[Frugalware-devel] Stop packaging webapps

VMiklos vmiklos at frugalware.org
Sun Mar 25 20:40:38 CEST 2007 

Na Sun, Mar 25, 2007 at 04:02:47PM +0100, Alex Smith <alex at alex-smith.me.uk> pisal(a):
> phpmyadmin is, of course, fine. the problematic thing really is
> webapps requiring a database or another form of data storage. we
> cannot easily keep the database/whatever up to date.

yes, i see the problem. i mean imho we have two conflicting problems
here:

- on -Syu maybe a lot of pkg will be updated - including webapps - and
  their db can't be updated automatically
- if a user installs a webapp manually then it's highly possible that
  the installed version won't be maintained: after more or less time the
  code will be vulnerable and the user probably won't fix it

so imho we would need the following solution:
- package webapps, so that _we_ will collect the necessary secfixes
  (most users can't do so)
- prevent an automatic upgrade

i see the following options:
- make webapps nobuild, since those packages are not updated during an
  -Syu. imho this is not too good since one day i hope they will be - or
  at least there will be a command to upgrade all packages installed via
  repoman
- let the users to put those apps on ignore in pacman.conf. imho this is
  bad, since ideally no packages should be on ignore (it is mainly a
  short-term workaround if the up to date package is not fixed till we
  provide a fixed one)
- implement the opposide of options=('force') - for example
  options=('stick'): if a new version is available then on a -Syu a
  warning will be printed (just like when the local version is newer),
  one can upgrade the pkg via pacman -S foo, but they are never upgraded
  automatically on a -Syu

opinions? i would vote for the last one, hopefully it would solve both
problems. of course i won't start to implement it till we agree on
this is good method for webapps and we'll use it

thanks,
VMiklos

-- 
developer of Frugalware Linux - http://frugalware.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : /pipermail/attachments/20070325/f908dd4c/attachment.bin

More information about the Frugalware-devel mailing list