Apply additional user-maintained conf file after apt changes

subgraph / paxrat

paxrat is a utility to set PaX flags on a set of binaries.

GNU General Public License v3.0

34 stars 9 forks source link

Apply additional user-maintained conf file after apt changes #18

Closed psivesely closed 7 years ago

psivesely commented 7 years ago

Since /etc/paxrat/paxrat.conf is updated periodically by the Subgraph team, making sure to get your latest changes while keeping my custom flags requires frequent manual intervention. If it were possible have paxrat apply another file in addition after apt changes that would simplify my life and probably others'.

xSmurf commented 7 years ago

Hey @fowlslegs you can call paxrat -c /path/to/config.

You can similarly copy /etc/apt/apt.conf.d/70paxrat to another apt config file and add the other dpkg hook there:

DPkg::Post-Invoke { "/sbin/paxrat -x -c /etc/paxrat/paxrat-local.conf";}

I'll leave the ticket opened though as a reminder that we still want to implement independent system + user maintained configs at some point in the future.

mckinney-subgraph commented 7 years ago

Yes, also feel free to send us the flags you are missing and we can add them to paxrat.conf.

mckinney-subgraph commented 7 years ago

paxrat (when run with no args or the default config path) will now pick up PaX flag config files from /etc/paxrat/conf.d.