[Pythonmac-SIG] PackageManager maintainer questions
Stuart Bishop
zen@shangri-la.dropbear.id.au
Tue May 27 02:23:23 EDT 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
>> How is a non-power-user supposed to do a site-wide install of
>> anything? (I used 'sudo pythonw PackageManager.py'.)
>
> I never thought about this. The next version of the binary installer
> will use group-writeable for all files, so any admin user can install
> packages, but I never thought about non-admin users wanting to install
> things system wide. I think the sudo trick won't work, because I think
> non-admin users aren't allowed to sudo.
Group writable means that any admin user can screw up or trojan
the site's installation without being prompted for their password
(ie. without using sudo).
I don't think Andrew meant non-admin users either (or if he did,
they shouldn't be able to do a site installation - they don't have admin
for a reason!). Removing the need for a command line sudo invokation
would require the package manager re-execing itself with sudo after
prompting for a password (ala Fink), or using the padlock 'click the
lock
to make changes' priv. escalation widget (is this possible?)
- --
Stuart Bishop <zen@shangri-la.dropbear.id.au>
http://shangri-la.dropbear.id.au/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (Darwin)
iD8DBQE+0r4Qh8iUz1x5geARAqRGAJ4lVc8VcEAjoLp6cMbGSDOSEI/fxgCg6Xh5
HE35w6i28nEjkowyI4nFEQY=
=3XHl
-----END PGP SIGNATURE-----
More information about the Pythonmac-SIG
mailing list