[NCLUG] Bad question I know!
Sean Reifschneider
jafo-nclug at tummy.com
Fri Apr 20 00:49:11 MDT 2001
On Sun, Apr 15, 2001 at 09:40:52AM -0600, mike cullerton wrote:
>i'm not sure i grok what you're trying to tell me. are you using SRPM's? is
>the main benefit that you "know" what gets installed and where?
I use pretty much exclusively SRPMs for third-party software I install.
The main benefit is that the *SYSTEM* knows that it installed and where, so
I don't have to deal with it. Don't get me wrong, I like editing config
files and all, but there are only so many things one can think about and
tracking down where things were dropped so I can uninstall some crappy
software isn't what I want to spend mental cycles on.
>what's the diff between getting an SRPM and patching it, and getting the
>latest tarball?
Well, one doesn't usually "patch" an SRPM. The SRPM is kind of a meta
format which includes the pristine tar file source, any patches that may
have to be made (for changing paths in files, adding functionality, fixing
bugs) and all the commands that one has to use to install it.
Basically, it encaspulates *ALL* the things you would have done to install
the software, in one neat little bundle that others can use as well.
>i'm thinking, that your systems have more stuff on them (not to mention
>users probably, which mine don't), and i'm wondering if that makes it more
Some do... Some definitely don't. For example, we just set up a server
for a particular client and it's usage after setup was just over 200MB in
just over 100 packages. I removed another 200 or so packages that were
installed as part of the default install which that system didn't need.
Root compromise in lprng? Not there any more...
>apache, mysql, php, openssh and sudo pretty much. also, i only allow access
What versions? An important question when they announce a root compromise
in version X.yy of one of the above. Oh, and what files above have been
changed since the install? Another question that RPM can answer quickly
and easily for you...
>the limited number of processes on my box helps me keep it straight in my
>head (in terms of what's where), and i just make sure i have the latest
>stuff running.
If you don't know what you have, how do you know you have the latest
version? As I said, my stripped down system (without X, Apache, etc) was
over 100 packages. You know which versions of *ALL* of those you have?
>perhaps more importantly for me, is that my way _forces_ me to think about
>what i'm doing. i'm still trying to understand it all, and this forced
>interaction helps me learn what's really going on.
If it works for you, great... There are some advantages to a packaging
system though.
Sean
--
A "fuddish" is when you *REALLY* like Looney Toons.
Sean Reifschneider, Inimitably Superfluous <jafo at tummy.com>
tummy.com - Linux Consulting since 1995. Qmail, KRUD, Firewalls, Python
More information about the NCLUG
mailing list