Bug 478605
| Summary: | Review Request: arpcheck - Ethernet Layer 2 checking tool | ||
|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Fabian Affolter <mail> |
| Component: | Package Review | Assignee: | Christoph Wickert <christoph.wickert> |
| Status: | CLOSED WONTFIX | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | rawhide | CC: | christoph.wickert, fedora-package-review, notting |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2009-04-06 15:01:52 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | |||
| Bug Blocks: | 201449 | ||
|
Description
Fabian Affolter
2009-01-01 23:35:14 UTC
The scrip itself is nice, but having the config inside the script itself is really bad. In the current state this should not be packaged as rpm.
How about moving the the basic config to lets say /etc/arpcheck.conf, /etc/archeck/arpreck.conf or /etc/sysconfig/arpcheck and modify the script a little?
############# CONFIGURATION ####################################################
### ONLY CHANGE IN /etc/sysconfig/arpcheck !!!
if [ ! -f /etc/sysconfig/arpcheck ]; then
echo "Configuration file /etc/sysconfig/arpckeck not found."
echo "Please copy /usr/share/doc/arpcheck-1.8-1/arpcheck.conf.default"
echo "to /etc/sysconfig/arpckeck and edit it for your needs."
exit 1
fi
. /etc/sysconfig/arpcheck
### End of basic config
Issues:
- Default config is not sane: Defaults for dMACLIST, BLACKLIST and WHITELIST are not same. If the script is executed with root privileges somewhere is accidentially creates files that are left behind because they are not owned by the package
- Log path requires root privileges
- No documentation except in the script itself. Include a README with some of the info from the header of the script
Ideas:
- Allow per user config ~/.arpcheck.conf
- Include a template for the configuration instead of providing the config file automatically to make sure the user edits the file before usage. Something like
if [ ! -f /etc/sysconfig/arpcheck ]; then
echo "Please copy /usr/share/doc/arpcheck-1.8-1/arpcheck.conf.default"
echo "to /etc/sysconfig/arpckeck and edit it for your needs."
exit 1
fi
- Include a README.FFEDORA for distro specific changes
- Install to /usr/sbin if this is only meant to be run as root
Thanks Christoph, very good points. From my point of view all this points should be implemented by upstream. I will get in touch with those guys and ask them to incorporate your ideas. Sent again a message to upstream. Upstream is still working on 2.0. I will close this review for now and reopen a new one as soon as arpcheck 2.0 is available. 2.0 is still not available |