Subject: Re: CVS commit: pkgsrc/security/audit-packages
To: Alistair Crooks <agc@netbsd.org>
From: Jim Bernard <jbernard@mines.edu>
List: pkgsrc-changes
Date: 05/22/2003 07:45:51
On Wed, May 21, 2003 at 06:11:48PM +0200, Alistair Crooks wrote:
> If you put it under /var, then you may be forcing the
> download-vulnerability-list script to be run as root. I'm of the opinion
> that the less work that is done by root, the better, which is why the list
> is downloaded to ${DISTDIR} (which is not necessarily /usr/pkgsrc/distfiles).
> The reason that ${DISTDIR} was chosen was that it was a directory that could
> be guaranteed to be there, and writable.

  It's not guaranteed to be writable here.  I like to keep pkgsrc on one
machine in a domain and mount it read-only on the others.  (I union mount
pkgsrc under a locally writable directory in order to do builds.)