From: Jakub Narebski <jnareb@gmail.com>
To: jidanni@jidanni.org
Cc: git@vger.kernel.org
Subject: Re: why not preserve file permissions?
Date: Fri, 05 Dec 2008 14:23:55 -0800 (PST) [thread overview]
Message-ID: <m38wqui7lz.fsf@localhost.localdomain> (raw)
In-Reply-To: <87tz9igzbr.fsf@jidanni.org>
jidanni@jidanni.org writes:
> Why not preserve permissions the way you find them, instead of just
> using 644 and 755? It certainly couldn't be more complicated than what
> you are doing now, and that way one could do things like use git to
> update system administration files across a sneakernet containing e.g.,
> # dlocate -lsconf exim4-config|sed 's/ .*//'|sort -u
> -rw-r-----
> -rw-r--r--
> -rwxr-xr-x
>
> > git was made for tracking source code, not 640 files.
>
> On the sneakernet no public patches would be sent, and the
> administrator would remember to make the sensitive .git directories
> 700. And sure, git should enforce umask or no set-uid or whatever when
> doing a checkout etc. The deluxe edition of git could even print a
> warning: "you are trying to track a 640 file but your .git permissions
> are less restrictive." However I recommend no premium or deluxe
> editions for now.
Git was made for tracking _source code_ among _different_ machines, as
a way to collaborate in development. This means that different users
of the same repository can have and usually have different user,
different user-id, different group, and perhaps different group
permission settings on a files. Git supports only ordinary files,
executable ordinary files, directories and symbolic links for
a reason: otherwise it would be very easy to propagate spurious
permission changes because some contributor has different setup.
Side note: git can be used on operating systems / with filesystems
which do not have UNIX notion of permissions (think MS Windows).
Also changes _now_ to the repository format (and keeping full
permissions would require changing format of 'tree' objects) would
have to be extremely well substantiated. And using git to store
system administration files, as a kind of cross between (amost) single
machine version control and backup system is possible even now: see
Etckeeper and IsiSetup tools (you can find them at git wiki at
http://git.or.cz/gitwiki/InterfacesFrontendsAndTools page). Or you
can use tools like CFEngine...
HTH.
--
Jakub Narebski
Poland
ShadeHawk on #git
next prev parent reply other threads:[~2008-12-05 22:25 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-12-05 20:08 why not preserve file permissions? jidanni
2008-12-05 22:23 ` Jakub Narebski [this message]
2008-12-05 22:38 ` Junio C Hamano
2008-12-06 1:29 ` Jeff King
2008-12-06 0:05 ` Daniel Barkalow
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=m38wqui7lz.fsf@localhost.localdomain \
--to=jnareb@gmail.com \
--cc=git@vger.kernel.org \
--cc=jidanni@jidanni.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.