Pierre Schmitz wrote:
Am Samstag, 25. April 2009 17:36:19 schrieb Dan McGee:
Installing into srv is no different than installing into /home/, IMO. It might be worse as it presents a relatively big security risk for those that do run public facing services, and suddenly a new script has been made available for web site users to run.
If we agree to this we should add such a rule to namcap.
Then this packages from [extra] should be fixed ? (install files under /srv/) xsp 2.4-1 Daniel Isenmann deluge(*) 1.1.6-3 Hugo Doria mythweb 0.21-1 Juergen Hoetzel squirrelmail 1.4.17-3 Unknown Packager (install files under /home) mailman 2.1.11-2 Allan McRae hylafax 4.4.4-1 Arch Linux slimserver v6.5.4-2 Tom Killian (*) does not matter much, it only put a directory inside /srv And from [community] that install files on /srv apache13,bugzilla, cacti, cchost, dokuwiki, drupal, dspam, flyspray, gnump3d, jabwebhist, mediawiki, nginx, phpldapadmin, phpmyadmin, phppgadmin, pnews, punbb, roundcubemail, web-news (all from Sergej Pupykin) and cherokee (from Evangelos Foutras) (and /home) sqlitemanager 1.2.0-2 Andrea Scarpino Grüße! -- Gerardo Exequiel Pozzi ( djgera ) http://www.djgera.com.ar KeyID: 0x1B8C330D Key fingerprint = 0CAA D5D4 CD85 4434 A219 76ED 39AB 221B 1B8C 330D