# HG changeset patch # User Michael Schloh von Bennewitz # Date 1240248120 -7200 # Node ID 0ba300bdf30a59dfbfcdc52157b91531a58dc7cc # Parent ba548e351342040fdbe8abc5c33c5ab81d0c73ee Change unfortunate but partly useful overreaching security tradeoff. The principle of allocating each running process an individual system user and group can have security benefits, however maintining a plethora of users, groups, processes, file modes, file permissions, and even nonportable file ACLs on a host serving from a hundred processes has some security disadvantages. This tradeoff is even worse for systems like OpenPKG which benefit from administration transparency through the use of minimal system intrusion and only three usage privilege levels. diff -r ba548e351342 -r 0ba300bdf30a postfix/postfix.spec --- a/postfix/postfix.spec Mon Apr 20 12:49:50 2009 +0200 +++ b/postfix/postfix.spec Mon Apr 20 19:22:00 2009 +0200 @@ -1,6 +1,6 @@ ## ## postfix.spec -- OpenPKG RPM Package Specification -## Copyright (c) 2000-2008 OpenPKG Foundation e.V. +## Copyright (c) 2000-2009 OpenPKG Foundation e.V. ## ## Permission to use, copy, modify, and distribute this software for ## any purpose with or without fee is hereby granted, provided that @@ -37,7 +37,7 @@ Group: Mail License: IPL Version: %{V_postfix} -Release: 20090406 +Release: 20090418 # package options %option with_fsl yes @@ -142,6 +142,11 @@ %patch -p0 ( cd pflogsumm-%{V_pflogsumm} && %{l_patch} -p0 -b <%{PATCH1} ) || exit $? + # remove OpenPKG privelege model incompatible exit conditions + %{l_shtool} subst \ + -e 's;msg_fatal\(.*attribute specifies mail system\);msg_info\1;g' \ + src/pipe/pipe.c + # apply vendor WHOSON patch %if "%{with_whoson}" == "yes" %patch -p0 -P 2