On Wed, 14.07.10 11:04, Daniel J Walsh (dwalsh@xxxxxxxxxx) wrote: > > I suspect the biggest issue here is confined daemons, as they may > > not have permissions to create their own directories in /var/run or > > /var/lock once they've been started. Unfortunately, it's the sort of > > flag day that we really can't do unless everything in our tree is fixed. > > > > Bill > > Are you talking about mounting shm at /var/run and /var/lock? SELinux > should be able to handle this. But you have a big spec file problem. > > rpm -qf /var/run/* | grep -v not | wc > 61 61 1853 > > Lots of directories owned by packages. Which is precisely the reason why I was looking for somebody to champion this (having provenpackager status would be a good idea, anyone?). The spec files need to be updated to %ghost those /var/run dirs. If SELinux is not a problem, the %ghost stuff should be easy. Alas involves fixing quite a few spec files. Lennart -- Lennart Poettering - Red Hat, Inc. -- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel
