cvs commit: src/etc Makefile
brooks at one-eyed-alien.net
Wed Mar 2 16:35:49 GMT 2005
On Wed, Mar 02, 2005 at 09:22:24AM +0200, Ruslan Ermilov wrote:
> Hi Brooks,
> On Wed, Mar 02, 2005 at 12:44:39AM +0000, Brooks Davis wrote:
> > brooks 2005-03-02 00:44:39 UTC
> > FreeBSD src repository
> > Modified files:
> > etc Makefile
> > Log:
> > Remove a number of entries from the distribution target that are
> > automaticly created at boot. There's no need to maintain a list of
> > files and permissions in multiple places. This also means binary
> > updates won't stomp on log files.
> > For the record, utmp is created in etc/rc.d/cleanvar, wtmp and lastlog
> > in etc/rc.d/var, and the reset via etc/rc.d/newsyslog.
> > Revision Changes Path
> > 1.341 +0 -26 src/etc/Makefile
> Has setting up jail(8) been considered (as per manpage)?
In truth, I didn't think about it much. That said, it looks like we're
mostly OK because var isn't marked nojail so it will be run and these
files will be created. It looks like there might be an issue for jails
that run a single application directly rather then running etc/rc, but
only if they use these files (certantly the syslog logs won't be used).
Someone more familiar with the jail(8) manpage might want add some notes
to this effect. I don't want to add them to the main scriptlet because
they aren't necessicary if running a full blown system so I'm not sure
where in the flow they belong. Basicly what needs to be done to restore
the previous state is after the "cd $D" do:
logs="var/run/utmp var/log/wtmp var/log/lastlog"
chmod 644 $logs
newsyslog -d $D -f etc/newsyslog.conf -CN
Any statement of the form "X is the one, true Y" is FALSE.
PGP fingerprint 655D 519C 26A7 82E7 2529 9BF0 5D8E 8BE9 F238 1AD4
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Size: 189 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/cvs-src/attachments/20050302/efef212a/attachment.bin
More information about the cvs-src