Dnia 2007-07-29, o godz. 13:42:02 ZC Miao <hellwolf.misty(a)gmail.com>
napisał(a):
- What about sandbox support?
Currently rpmbuild can destroy data outside $RPM_BUILD_ROOT, /tmp, etc.
That's
why it's always been required to not run rpmbuild as root. We have
rpmdev-setuptree exactly for making the sandbox quickly. You can't destroy
other users' files in tmp/ if you're not root, you know?
OTOH, making /usr/src/redhat owned by an rpmbuild user and setuid()ing to that
account automatically would make things simpler for you, but do you really
need it?
Lam