From mboxrd@z Thu Jan 1 00:00:00 1970 From: John Darrington Subject: Re: A postinst equivalent in Guix? Date: Wed, 25 Jan 2017 14:42:41 +0100 Message-ID: <20170125134241.GA25335@jocasta.intra> References: <87efzxakmi.fsf@gnu.org> <20170121143923.vdmmljvc3ngksuze@gmail.com> <87wpdojujk.fsf@gnu.org> <20170121163636.jyieflzslmyrtrmw@gmail.com> <87vat6xgow.fsf@gnu.org> <87h94o3ryj.fsf@dustycloud.org> <87lgtzxov3.fsf@gnu.org> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="RnlQjJ0d97Da+TV1" Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:58675) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1cWNqo-0002CT-Cc for guix-devel@gnu.org; Wed, 25 Jan 2017 08:43:03 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1cWNqn-0005MC-Eq for guix-devel@gnu.org; Wed, 25 Jan 2017 08:43:02 -0500 Content-Disposition: inline In-Reply-To: <87lgtzxov3.fsf@gnu.org> List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: "Guix-devel" To: Ludovic Court??s Cc: guix-devel@gnu.org, Georgi Kirilov --RnlQjJ0d97Da+TV1 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Jan 25, 2017 at 02:15:12PM +0100, Ludovic Court??s wrote: Christopher Allan Webber skribis: =20 > Ludovic Court??s writes: > >> Georgi Kirilov skribis: >> >>> On Sat, Jan 21, 2017 at 04:34:55PM +0100, Ludovic Court??s wrote: >>> >>>>To make things more concrete, we could discuss specific packages y= ou are >>>>interested in and see how we could provide them in Guix{,SD}. >>> >>> The package is the old bsd-games bundle. Some of the games need to >>> write score files under /var/lib/bsdgames/ >>> You can find attached my patch so far. >> >> The patch looks good to me! >> >> As for /var/lib/bsdgames, then it???s up to the admin to set the ri= ght >> permissions on it. We can ensure that it exists and has the right >> permissions on GuixSD, but on foreign distros, there???s nothing we= can >> do. >> >> We could also modify bsd-games such that it falls back to >> ~/.local/bsdgames when /var/lib/bsdgames isn???t accessible (and it= would >> be worth submitting upstream). ISTR this was discussed for one of = the >> games present in Guix. >> >> WDYT? >> >> Ludo???. > > I'm a bit wary about GuixSD packages declaring being able to write to > /var/ anything by default. What would the permissions be? I guess = if > it were world-writable to all "users" group users it would be okayis= h. > > Note that KoboDeluxe includes a patch snarfed from Debian that comme= nts > out the ability to save score files for this same reason, and it was > marked in Debian as a security patch IIRC... =20 Yeah, I think scores in /var are a remnant of the past. Unix just lac= ks a good way to address this use case. =20 So it sounds best for games to use a score file under $HOME by default. =20 I always thought the unix way was rather nice. The scores file was owned = by=20 "games" and programs which wanted to write to them were setuid games. That way everyone on the system shares the same scores file. J' =20 --=20 Avoid eavesdropping. Send strong encrypted email. PGP Public key ID: 1024D/2DE827B3=20 fingerprint =3D 8797 A26D 0854 2EAB 0285 A290 8A67 719C 2DE8 27B3 See http://sks-keyservers.net or any PGP keyserver for public key. --RnlQjJ0d97Da+TV1 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: Digital signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iEYEARECAAYFAliIq1EACgkQimdxnC3oJ7NeXgCfamYBT1QB+3XbdzBp2ceS/JVF /0sAmwTIcGvaS8Ejdjf2CbMF+aq1bFNV =kcny -----END PGP SIGNATURE----- --RnlQjJ0d97Da+TV1--