GoboLinux's recipe for delicious package management (Linux.com)

GoboLinux's recipe for delicious package management (Linux.com)

Posted Feb 19, 2007 14:58 UTC (Mon) by mmarq (guest, #2332)
In reply to: GoboLinux's recipe for delicious package management (Linux.com) by hein.zelle
Parent article: GoboLinux's recipe for delicious package management (Linux.com)

"" It's a sort-of tried method, we used it at my previous employer to install a lot of software without administrator rights, on a shared directory. For some packages it's easy to automate, but for many others manual intervention is required. You need to figure out what to link and what not (only bin/* and lib/*? or include/* as well? Or man .. or info?) ""

imho it wouldnt be that hard to automate, even for non-root accounts, if it were included in the LSB HFS. That is, the "figuring out" would be pre-determined, and only the App files(ex, lib, data) *Really Needing* root acess will be ones getting it.

Putting every App in /usr dosent do i nice job.

Worst is a *security treath*. Better would be to install every App *as non-root* in a special directory, and automate install from an ACL for what Apps files that would be needing root previlege, and at full discretion for what users and groups that will be having acess to what Apps files.

That install could be just a hardlinking script, not breaking POSIX, and so duplication would not be necessary. And better we could even re-install a different distro that most probably almost all Apps will work, that being i belive the original idea...

Portability could be 100% if that special directory could have several versions of the same App or several different versions of the same App.

But better than all this, is that it will be implementing a coherent form of the *Principal Of Least Authority* (POLA) into Linux World. Security would be much more improved from what might be seen at first sight.

---

(Log in to post comments)