Thread: [Sqlgrey-users] .spec missing /etc/sqlgrey/discrimination.regexp

Brought to you by: gyver, ludvigm, rebum

sqlgrey-users

[Sqlgrey-users] .spec missing /etc/sqlgrey/discrimination.regexp

From: John T. <gma...@jt...> - 2007-07-21 20:16:08

On Centos 5.0
rpmbuild -ta sqlgrey-1.7.5.tar.bz2
failed with
error: Installed (but unpackaged) file(s) found:
    /etc/sqlgrey/discrimination.regexp
Adding /etc/sqlgrey/discrimination.regexp
to the %files section of the spec file solved the problem for me.

-- 
Sincerely,
John Thomas

[Sqlgrey-users] Additional .spec suggestions (was Re: .spec missing /etc/sqlgrey/discrimination.regexp)

From: John T. <gma...@jt...> - 2007-08-04 00:39:16

I know little and suspect the following would help:
The spec file creates a user that is allowed to login
sqlgrey:x:509:509::/var/sqlgrey:/bin/bash
If possible, wouldn't it be better have the spec file create a user like 
this:
sqlgrey:x:509:509::/var/sqlgrey:/sbin/nologin
?

John Thomas said the following on 07/21/2007 01:16 PM:
> On Centos 5.0
> rpmbuild -ta sqlgrey-1.7.5.tar.bz2
> failed with
> error: Installed (but unpackaged) file(s) found:
>     /etc/sqlgrey/discrimination.regexp
> Adding /etc/sqlgrey/discrimination.regexp
> to the %files section of the spec file solved the problem for me.
> 


-- 
Sincerely,
John Thomas

Re: [Sqlgrey-users] Additional .spec suggestions (was Re: .spec missing /etc/sqlgrey/discrimination.regexp)

From: Dan M. <dan...@da...> - 2007-08-04 00:57:16

On Fri, Aug 03, 2007 at 05:39:08PM -0700, John Thomas wrote:
> I know little and suspect the following would help:
> The spec file creates a user that is allowed to login
> sqlgrey:x:509:509::/var/sqlgrey:/bin/bash
> If possible, wouldn't it be better have the spec file create a user like 
> this:
> sqlgrey:x:509:509::/var/sqlgrey:/sbin/nologin
> ?

Under FreeBSD 6 (the professional ISP OS) the shell is nologin.

  sqlgrey:*:1002:1002:Postgrey Owner:/usr/local/share/sqlgrey:/sbin/nologin

Leave it to Linux to do things wrong.  (flame on!)


Dan

> John Thomas said the following on 07/21/2007 01:16 PM:
> > On Centos 5.0
> > rpmbuild -ta sqlgrey-1.7.5.tar.bz2
> > failed with
> > error: Installed (but unpackaged) file(s) found:
> >     /etc/sqlgrey/discrimination.regexp
> > Adding /etc/sqlgrey/discrimination.regexp
> > to the %files section of the spec file solved the problem for me.
> > 
> 
> 
> -- 
> Sincerely,
> John Thomas
> 
> -------------------------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc.
> Still grepping through log files to find problems?  Stop.
> Now Search log events and configuration files using AJAX and a browser.
> Download your FREE copy of Splunk now >>  http://get.splunk.com/
> _______________________________________________
> Sqlgrey-users mailing list
> Sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlgrey-users

-- 
     Daniel R Mason  =  dan...@da...  =  Unix Systems Engineer;
"Fanatical Islam is not a religion. It is the lust for power and control
 over other people. It is a destructive, evil force that will sweep away
 all that is good and fine in this world." -- Orson Scott Card

Re: [Sqlgrey-users] Additional .spec suggestions (was Re: .spec missing /etc/sqlgrey/discrimination.regexp)

From: John T. <gma...@jt...> - 2007-08-04 01:40:19

Dan Mason said the following on 08/03/2007 05:57 PM:
<snip>
> Under FreeBSD 6 (the professional ISP OS) the shell is nologin.
I am using Centos 5

> Leave it to Linux to do things wrong.  (flame on!)
It seems to a rookie that it is rather cool that two fairly different 
OS's are able get fairly accurate installs, excepting a, possible, 
security hole.  Further, it seems this hole is pluggable.

I wish Mr. Linux would create a clean install for all Linux's (apt-get 
yum, rpm, deb, etc), whatever works.

(flame off!)

-- 
Sincerely,
John Thomas

Re: [Sqlgrey-users] Additional .spec suggestions (was Re: .spec missing /etc/sqlgrey/discrimination.regexp)

From: Chris S. <ch...@cs...> - 2007-08-04 09:47:28

On Sat, 4 Aug 2007, Dan Mason wrote:

> Leave it to Linux to do things wrong. =A0(flame on!)

s/Linux/people/

=2D-=20
 Chris Samuel  :  http://www.csamuel.org/  :  Melbourne, VIC

This email may come with a PGP signature as a file. Do not panic.
=46or more info see: http://en.wikipedia.org/wiki/OpenPGP

Re: [Sqlgrey-users] Additional .spec suggestions (was Re: .spec missing /etc/sqlgrey/discrimination.regexp)

From: Dan F. <da...@ha...> - 2007-08-04 13:41:32

Dan Mason wrote:
> Under FreeBSD 6 (the professional ISP OS) the shell is nologin.
>
>   sqlgrey:*:1002:1002:Postgrey Owner:/usr/local/share/sqlgrey:/sbin/nologin
>
> Leave it to Linux to do things wrong.  (flame on!)
>   
*nix-religious ppl are funny ;)

Bleh. Well.. Many times linux does use /bin/true or /bin/false (which 
practically does the same thing), but AFAIK makes little difference. The 
shadowfile contains '!' as password, thus no valid password can be entered.
If a valid password COULD be entered, setting /sbin/nologin would do 
little to save you, as
$ su <username> -s /bin/bash
would bypass whatever defined in passwd. So i dont see /sbin/nologin 
hindering anything you cant do another way if you already have so much 
access that you can define a password for the user.

So that said, sure i can make it put in /bin/true or whatever in the 
.spec file, because it DOES look neater. :) Ill stick it into CVS, but 
unless someone can convince me otherwise, i dont see it as a problem and 
wont make a new release based on this alone.

- Dan