[wpkg-users] [Bug 273] Per user install support

bugzilla-daemon at bugzilla.wpkg.org bugzilla-daemon at bugzilla.wpkg.org
Thu May 17 23:37:59 CEST 2012


http://bugzilla.wpkg.org/show_bug.cgi?id=273

--- Comment #9 from Keith Jones <k.e.jones at brighton.ac.uk>  ---
Hi,

(In reply to comment #6)
> One thing has not been discussed yet, the security.
> For machine software repositories there is no need to grant access for regular
> users and there shouldn't be access for them anyways.
> User software repositories will need at least read access for every user.
> Since we are now maintaining separate repositories, we do not get the problem
> of users applying machine profiles and vice versa.
> Maintaining two repositories is not so much work, than getting a bunch of
> machine installations corrected due to some configuration error.
> Food for thought ;-)
> --
> Stefan

Understood :-) Well sort of... I'm not sure how this fits in with the request.

 I can understand having two repositories with appropriate ACLs on the shares
and folders should be implemented (actually one repository would suffice if
you're careful with access permissions) but I'm not seeing the connection with
machine vs user installs. Surely you'd set up things as you need them to be for
security/your package needs/your licensing needs?

...Having said that... I've run into a few MSI machine level installs that fall
over and need the original source MSI files to made available to them (bad
caching!). The end reult is that the user fires the program up, it self-heals
and ask for access to the source files which need admin credentials to get
access. You can't handle that in a script!

 Security isn't easy to wave a magic wand over, sometimes you have to absorb
that idea and work with the experiences :-(

Keith

-- 
Configure bugmail: http://bugzilla.wpkg.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.



More information about the wpkg-users mailing list