From 2ef31bb41f1f04a9d7341e7b2fe683f71e922097 Mon Sep 17 00:00:00 2001 From: Joey Hess Date: Mon, 5 Nov 2007 22:49:53 -0500 Subject: store empty directories and restore in etckeeper init While working on this, I had to consider security policies -- is it ok if etckeeper init can run code from the /etc repository? I've decided this should be ok, and documented that it should only be run on trusted repos. Note that metastore could also be exploited by untrusted repos, and of course, note that you're checking out your *** /etc *** so it damn well better be trusted! With that determined, I decided to use a simple shell script to hold the empty directory info and allow them to be easily created. Expanding this for other files git can't represent is a possibility.. --- init.d/05restore-etckeeper | 8 ++++++++ 1 file changed, 8 insertions(+) create mode 100755 init.d/05restore-etckeeper (limited to 'init.d/05restore-etckeeper') diff --git a/init.d/05restore-etckeeper b/init.d/05restore-etckeeper new file mode 100755 index 0000000..376524c --- /dev/null +++ b/init.d/05restore-etckeeper @@ -0,0 +1,8 @@ +#!/bin/sh +set -e + +# Yes, this runs code from the repository. As documented, etckeeper-init +# should only be run on repositories you trust. +if [ -e .etckeeper ]; then + . ./.etckeeper +fi -- cgit v1.2.3