selinux breaks revisor
Jesse Keating
jkeating at redhat.com
Fri Jan 25 01:06:24 UTC 2008
On Thu, 24 Jan 2008 18:59:47 -0600
Douglas McClendon <dmc.fedora at filteredperception.org> wrote:
> I'll take that 12 hours over the 1hr for livecd-creator any day of
> the week, knowing that I'm not running about 1000 rpm post install
> scripts under the limited protection of a chroot with selinux
> disabled. Combined with the comfort of knowing that if I do a compose
> on a different piece of hardware, that those 1000 scripts will have
> no chance to sneakily incur any host build dependencies based on
> their access to a random /proc (as opposed to the consistency of
> always identical qemu /proc).
>
> You may call 12 hours for a compose unusably slow. I don't. And
> computers and software get improved all the time, so maybe in 3
> years, that 12 hours will just become "order a pizza and wait for the
> results".
Eh, if we really wanted to do this, we'd just re-kickstart the builder
each time we wanted to do a build, and then just do the build in the
freshly kickstart install, removing it when done.
--
Jesse Keating
Fedora -- All my bits are free, are yours?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20080124/5223b9b8/attachment.sig>
More information about the fedora-devel-list
mailing list