Hi Carlos, [...]
There needs to be special %post and %verify scripts in the packages that need hooks in the permissions framework to refresh the permissions if the /usr/bin/gnome-keyring-daemon should behave like this.
... then every package maintainer has to add it to his packages. And whats more, the maintainer doesn't even know, that an adaministrator of a certain system wants to add capabilities or special permissions to one of the package files. On the other hand an administrator may forget that in an update of a few hundred packages is one that needs a rerun of chkstat. So IMHO it would be great to have it run automatically - for example when zypper [up|dup|patch] finishes. It could be controlled by a parameter in zypp.conf.
That's how it was run some years ago. In the past YaST or zypper ran "SuSEconfig" at the end of each modification run, and that script took care of everything.
yeah, I remember the good old times ;) Not sure, though, if zypper already existed at that time, but yes, Yast called SuSEconfig. Wonder, why it was left out at some point.
-- Cheers / Saludos,
Carlos E. R.
Bye. Michael. -- Michael Hirmke -- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-security+owner@opensuse.org