|
OpenBSD Packages and Ports Installation and upgrading of packages and ports on OpenBSD. |
|
Thread Tools | Display Modes |
|
|||
Avoiding password while compiling ports
Is there a secure and simple way to prevent the compilation process from asking for my password more than once? The documentation suggests avoiding root for compilation, which makes sense, so I set up to compile as my regular user. However, the "persist" option in doas.conf seems more like a "pester" option because it asks for my password incessantly. I usually end up resorting to the "nopass" option but that just seems terribly insecure. What is the best way to work around this problem?
|
|
|||
"persist" is only for a limited time (5 minutes, IIRC). With persist off, it's at every doas issuance, even if they're only a microsecond apart.
Some options: 1. Set your PREFIX, LOCALBASE, and TRUEPREFIX to directories that you have write access to, and add it LOCALBASE/bin directory to your PATH. That seems like a bad option. 2. Set nopass and use strong passwords locally and ssh keys only remotely. That sounds wise. 3. Use packages instead of ports. How many ports are you building anyway? Why? You almost certainly don't need to be building packages yourself. |
|
|||
While compiling ports, the "persist" option makes no difference, it still asks for my password even if they are a microsecond apart. I suppose I will stick with option 2 for now.
I'm compiling ports listed by out-of-date, because -release and -stable packages do not receive security updates. I'm not ready for -current yet. What about a possible option 4) Create a dedicated build user with the bare minimum permissions necessary to build/install ports? I'm not experienced enough to know how to do that correctly, I'm just thinking aloud. |
|
||||
Hello and welcome!
Quote:
Quote:
Last edited by jggimi; 1st November 2017 at 10:25 AM. Reason: clarity, one typo |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Got my ports tree deleted after attempting ports update | bsdnotbdsm | FreeBSD Ports and Packages | 2 | 18th May 2014 01:58 PM |
FreeBSD Complete ports thaw after ports freeze for 7.3 Release | J65nko | News | 0 | 24th March 2010 11:46 PM |
4.5 on macppc: emacs package, compiling ports | moosejaw | OpenBSD Packages and Ports | 16 | 19th October 2009 08:25 PM |
c++ compiling hello world | Gates | Programming | 3 | 26th July 2008 12:48 PM |
Compiling Nagios 3.02 | roundkat | Solaris | 1 | 2nd June 2008 09:09 PM |