On Thu, 22 May 2003 07:45:51 -0600
Jim Bernard <jbernard@mines.edu> wrote:

> On Wed, May 21, 2003 at 06:11:48PM +0200, Alistair Crooks wrote:
> > If you put it under /var, then you may be forcing the
> > download-vulnerability-list script to be run as root. I'm of the opinion
> > that the less work that is done by root, the better, which is why the list
> > is downloaded to ${DISTDIR} (which is not necessarily /usr/pkgsrc/distfiles).
> > The reason that ${DISTDIR} was chosen was that it was a directory that could
> > be guaranteed to be there, and writable.
> 
>   It's not guaranteed to be writable here.  I like to keep pkgsrc on one
> machine in a domain and mount it read-only on the others.  (I union mount
> pkgsrc under a locally writable directory in order to do builds.)

Also, that directory won't always exist...  I was "surprised" to see a
/usr/pkgsrc directory on a machine where there is no pkgsrc (only binary
packages).  It is not really a problem, more now that can be changed "on the
fly", but as a _default_ for prebuilt binaries, it doesn't look good,
IMHO, of course ;)

-- 
Julio M. Merino Vidal <jmmv@menta.net>
The NetBSD Project - http://www.NetBSD.org/