[Bug 472676] Review Request: partimage
bugzilla at redhat.com
bugzilla at redhat.com
Tue Nov 25 19:05:38 UTC 2008
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=472676
--- Comment #9 from Paulo Roma Cavalcanti <promac at gmail.com> 2008-11-25 14:05:37 EDT ---
> rpmlint on SRPM:
> partimage.src: W: strange-permission create_certificates.sh 0775
> A file that you listed to include in your package has strange permissions.
> Usually, a file should have 0644 permissions.
I put the script that creates the certificates in the same directory
the certificates are going to be. It has been moved to /usr/share/partimaged.
>
> partimage.src: W: strange-permission partimaged-passwd 0755
> A file that you listed to include in your package has strange permissions.
> Usually, a file should have 0644 permissions.
>
The idea behind this script is that users do not need to have a local account
on the server in case a login is needed. It has been moved to
/usr/share/partimaged.
This script creates a db file (user, passwd), which can be used by pam for
authentication purposes. The problem is that pam is ignoring this file
and using only the /etc/partimaged/partimagedusers, which lists only
local users (no passwords).
Therefore, my pam rules are not working the way I wanted,
but I do not know how to fix them ...
For now, only local users can authenticate.
Any suggestion? Do you know how pam works?
>
> Should these not be 700, or at least 744?
>
> rpmlint on RPMS:
>
> partimage-server.i386: W: non-standard-uid /etc/partimaged partimag
> partimage-server.i386: W: non-standard-gid /etc/partimaged partimag
> partimage-server.i386: W: non-standard-uid /home/images partimag
> partimage-server.i386: W: non-standard-gid /home/images partimag
> partimage-server.i386: W: non-standard-uid /var/log/partimaged partimag
> partimage-server.i386: W: non-standard-gid /var/log/partimaged partimag
> partimage-server.i386: W: non-standard-uid
> /etc/partimaged/create_certificates.sh partimag
> partimage-server.i386: W: non-standard-gid
> /etc/partimaged/create_certificates.sh partimag
> partimage-server.i386: W: non-standard-uid /etc/partimaged/partimagedusers
> partimag
> partimage-server.i386: W: non-standard-gid /etc/partimaged/partimagedusers
> partimag
> partimage-server.i386: W: non-standard-uid /etc/partimaged/partimage-certs.cnf
> partimag
> partimage-server.i386: W: non-standard-gid /etc/partimaged/partimage-certs.cnf
> partimag
>
> OK.
>
> partimage-server.i386: E: dir-or-file-in-home /home/images
>
> What's going on here? This cannot be in /home, maybe
> /usr/share/partimage-server or /var/lib/partimage-server.
I used a
%bcond_without home
because it is where I save my images (all my free space is always in /home).
This has been changed to
%bcond_with home
which makes the spec to put the images in /var/partimaged.
>
> partimage-server.i386: E: incoherent-logrotate-file /etc/logrotate.d/partimaged
> partimage-server.i386: W: incoherent-init-script-name partimaged
>
> Probably fine, but could be patched to be partimage-server, or possibly the
> sub-package renamed partimaged.
>
The process name is partimaged. I think is counter-intuitive to use
partimage-server. The sub-package could be renamed, but everybody else uses
partimage-server. Only Fedora would be different ...
> partimage-server.i386: E: executable-marked-as-config-file
> /etc/partimaged/create_certificates.sh
>
> Should be in /usr/share/partimaged/
Already moved.
>
> partimage-server.i386: E: non-readable /etc/partimaged/partimagedusers 0600
>
> Probably fine.
> License is GPLv2+.
Fixed.
> Fix Source0 URL. . .
> https://fedoraproject.org/wiki/Packaging/SourceURL
Changed.
> Send gcc-4.3 patch upstream if not already done, document that you did and how
> in the spec.
It is in the changelog section.
The patch is very simple, and just changed some include files for C++:
-#include <iostream.h>
+#include <iostream>
> The DOCS are duplicated in the main and server packages. Usually redundant,
> but since they don't require each other, it's OK here.
> Need to BuildRequires zlib-devel.
Done.
Links updated. A README.fedora will be added.
--
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
More information about the Fedora-package-review
mailing list