Changing $PATH for apt installs
Julian Andres Klode
julian.klode at canonical.com
Tue Dec 18 15:04:29 UTC 2018
On Tue, Dec 04, 2018 at 09:46:25PM +0100, Julian Andres Klode wrote:
> Hi folks,
>
> I'm planning to have apt set PATH to a sane value for running
> dpkg, so that maintainer scripts are executed in a sanitized
> environment. That value will be:
>
> PATH=/usr/sbin:/usr/bin:/sbin:/bin
>
> The effect:
>
> (1) There is no /usr/local, which prevents breakage from custom perl
> or python installation
>
> (2) /snap/bin is not included either. This means that packages migrating
> to snaps will have to provide compatibility links (scripts?) in /usr
> - IIRC, lxd already does so, I'm not sure about other libraries.
>
> Together, this ensures that deb packages only talk to deb packages.
This just landed in Debian unstable, and should hit disco in the
next 24 hours or so.
--
debian developer - deb.li/jak | jak-linux.org - free software dev
ubuntu core developer i speak de, en
More information about the ubuntu-devel
mailing list