Yamaban wrote:
IMHO it is remarkable that neither the 'big' databases (postgres/mysql) nor any of the httpd / imapd / popd / sshd have any of this 'special' handling in the spec file.
It would be bad to enable them just after installation. Package maintainers are aware of it and they don't even attempt to start them by default.
I have little trouble with the thought of a 'enable'-preset for the syslog trio (rsyslog / syslogd / syslog-ng), but the hacks in the spec files smack of remnants of earlier time.
I think that it is OK to have it enabled by default. If packages behave correctly, they should respect your decision to keep services off on upgrade. Review is needed.
Personally, I vote for 'no enabling' for any daemon that can not be used in a secure way out of the box without user input for the configuration.
That means "NO to auto-enable" of any Imap / POP / mail daemon. Is openldap really usable without further config? And IMPI is a known security risk on its own.
Yes, it is the default fallback in openSUSE: /usr/lib/systemd/system-preset/99-default-disable.preset: disable * i. e. anything that is not listed in preset files is disable by default. (It works if package respects presets.) -- Best Regards / S pozdravem, Stanislav Brabec software developer --------------------------------------------------------------------- SUSE LINUX, s. r. o. e-mail: sbrabec@suse.cz Lihovarská 1060/12 tel: +49 911 7405384547 190 00 Praha 9 fax: +420 284 084 001 Czech Republic http://www.suse.cz/ PGP: 830B 40D5 9E05 35D8 5E27 6FA3 717C 209F A04F CD76 -- To unsubscribe, e-mail: opensuse-packaging+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-packaging+owner@opensuse.org