svn commit: r398821 - head/security/maia

Baptiste Daroussin bapt at FreeBSD.org
Thu Oct 8 13:26:49 UTC 2015 

On Thu, Oct 08, 2015 at 01:19:42PM +0000, Dmitry Marakasov wrote:
> Author: amdmi3
> Date: Thu Oct  8 13:19:42 2015
> New Revision: 398821
> URL: https://svnweb.freebsd.org/changeset/ports/398821
> 
> Log:
>   - Move file owner handling to plist, fix stage as non-root
>   
>   PR:		203287
>   Submitted by:	amdmi3
>   Approved by:	maintainer timeout (ek at purplehat.org, 2 weeks)
> 
> Modified:
>   head/security/maia/Makefile
>   head/security/maia/pkg-plist
> 
> Modified: head/security/maia/Makefile
> ==============================================================================
> --- head/security/maia/Makefile	Thu Oct  8 12:56:37 2015	(r398820)
> +++ head/security/maia/Makefile	Thu Oct  8 13:19:42 2015	(r398821)
> @@ -338,7 +338,6 @@ post-patch:
>  do-install:
>  	${MKDIR} ${STAGEDIR}${WWWDIR}
>  	@cd ${WRKSRC}/php && ${COPYTREE_SHARE} . ${STAGEDIR}${WWWDIR}
> -	${CHOWN} -R ${WWWOWN}:${WWWGRP} ${STAGEDIR}${WWWDIR}/
>  	${LN} -s ${PREFIX}/share/smarty ${STAGEDIR}${WWWDIR}/libs/Smarty
>  	${MKDIR} -p ${STAGEDIR}${DATADIR}
>  	@cd ${WRKSRC}/scripts && ${COPYTREE_SHARE} . ${STAGEDIR}${DATADIR}/scripts
> @@ -350,11 +349,10 @@ do-install:
>  	${INSTALL} -m 640 ${WRKSRC}/maiad.conf.dist ${STAGEDIR}${ETCDIR}/maiad.conf.dist
>  	${INSTALL} -m 640 ${WRKSRC}/maia.conf.dist ${STAGEDIR}${ETCDIR}/maia.conf.dist
>  
> -.if ${PORT_OPTIONS:MDOCS}
> +do-install-DOCS-on:
>  	${MKDIR} ${STAGEDIR}${DOCSDIR}
>  .for i in ${DOCS}
>  	${INSTALL_DATA} ${WRKSRC}/${i} ${STAGEDIR}${DOCSDIR}
>  .endfor
> -.endif
>  
>  .include <bsd.port.post.mk>
> 
> Modified: head/security/maia/pkg-plist
> ==============================================================================
> --- head/security/maia/pkg-plist	Thu Oct  8 12:56:37 2015	(r398820)
> +++ head/security/maia/pkg-plist	Thu Oct  8 13:19:42 2015	(r398821)
> @@ -40,6 +40,8 @@ sbin/maiad
>  %%DATADIR%%/scripts/send-quarantine-reminders.pl
>  %%DATADIR%%/scripts/stats-snapshot.pl
>  @mode
> + at owner %%WWWOWN%%
> + at group %%WWWGRP%%

There is absolutly no reason those files belongs to those users only directories
(like cache directories) and files that the app expect to be able to modified
when run should be own by such user, otherwise everything should belong to
root/wheel: aka the default

Best regards,
Bapt
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/svn-ports-head/attachments/20151008/440dc5cd/attachment.bin>

More information about the svn-ports-head mailing list