[arch-dev-public] Packages with files in /opt

Eric Belanger belanger at ASTRO.UMontreal.CA
Thu Nov 22 13:48:39 EST 2007

On Thu, 22 Nov 2007, Jeff Mickey wrote:

> After reading Aaron's status report, I figured this would be an easy
> thing to take care of.
> Here is the script I used to find these packages:
> #!/bin/zsh
> dirs=('/home/ftp/core/os/i686' '/home/ftp/extra/os/i686')
> for dir in $dirs; do
> 	for pkg in `ls $dir`; do
> 		tar -tzf $dir/$pkg | egrep '^opt' > /dev/null
> 		if [[ $? < 1 ]]; then
> 			print $pkg
> 		fi
> 	done
> done
> I figured I'd post the list of packages that have /opt files.  I'm
> gonna do some of these packages while I'm here on break, but if you
> see a package _you_ would rather take care of, just reply to the
> thread.  I also think that filesystem should be the very last package
> that we do.. if we ever do it.  It's probably best to keep it there so
> that way packages don't add and remove the /opt folder, it is always
> owned by the filesystem package.
> If you think I missed a package or one of these is wrong, just reply
> and let me know.  And here is the list of the offending packages:
> acroread-8.1.1-1-i686.pkg.tar.gz

acroread is my package. I'll do the change myself.

> chkrootkit-0.47-1.pkg.tar.gz

I am not a security expert but isn't the reason that chkrootkit is not 
being installed in a directory in the PATH a security reason so that 
malware can't find the executables to modify/delete them? Maybe keeping 
it out of /usr  would accomplish this better.

BTW, my understanding was that we were waiting for kde4 before moving KDE 
packages to /usr.

This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

More information about the arch-dev-public mailing list