Univention Bugzilla – Bug 36711
Package lists allow to remove essential packages
Last modified: 2015-03-11 15:09:40 CET
The package list contains "Tools: file". If that is added to the list of packages to be removed, this also force-removes cacklib, python-cracklib, python-univention, univention-config, and so on. After that the system is unuable. The package list removal mechanism should not be allowed to remove essential UCS packages.
In a first step we should remove the package file from the list.
wget, lsof, nmap → also break the system
Created attachment 6719 [details] bug36711.sh Here is a script which checks every package if it would uninstall necessary packages (starting with univention- or ucs-).
Created attachment 6720 [details] script output Here is the output of that script.
So I am filtering out the following packages in the Syntax-class of "Package removal list" in policies/masterpackages, policies/memberpackages and policies/slavepackages: wget screen openssh-client nmap lsof file
The packages mentioned in comment 5 are now prevented to be saved. It is not possible to prevent that they are shown in the list. Fixed also the error format of the shown error message. Fix: svn r58458 YAML: 2015-02-24-univention-directory-manager-modules.yaml YAML: 2015-02-26-univention-management-console-module-udm.yaml No cross dependencies. QA: please check also if we should add some more packages.
OK - debian/changelog OK - prevent OK - yaml files didn't: QA: please check also if we should add some more packages.
http://errata.univention.de/ucs/4.0/102.html
http://errata.univention.de/ucs/4.0/98.html