On Wed, Jan 19, 2005 at 07:12:08PM -0000 or thereabouts, Kostas Georgiou wrote:
> On Wed, Jan 19, 2005 at 03:57:10PM +0000, Steve Traylen wrote:
>
> > On Wed, Jan 19, 2005 at 03:34:37PM -0000 or thereabouts, Alessandra Forti wrote:
> > > never mind I've just tried and it works.
> >
> > For information also for people (Imperial) using real Redhat up2date
> > now supports both yum and apt repos so you do not have to install apt
> > or yum.
>
> A quick test under RHEL
>
> # up2date --show-channels --dry-run -u lcg-UI
> ...
> file /etc/java/java.conf from install of j2sdk_profile-1.4.2_04-1 conflicts with file
> from package jpackage-utils-1.5.38-1jpp_4rh
> ...
> Which is caused by the non-standard java package (RedHat is using the jpackage packages).
> From what i remember java 1.4.2_04 is the one with the security problem as well right ?
> I also noticed packages in the repository like python/swig/ant/xerces/xml-commons/perl-*/etc
> that should probably be moved somewhere else (a second repository for non lcg specific
> packages maybe?).
Hi,
Java, JPackage and Redhat is a bit mess, the problem arises here since
ScientificLinux, CentOS and Cern linux could not rebuild the java packages
so it is not in their distribution. The reason they can't build the SRPMS
unless you have you have extra 3rd party things installed and configured
that are not part of the release. e.g. javac is not part of the redhat
release. So the rebuilders have no idea how to the set the machine up
so that they can be rebuilt. It has been stated this will be better with
SL4 but I don't why.
As for a solution to your current problem I would say the only idea at your
end is to look the lcg-UI rpm depends on and install the lcg packages
individually. I'm sure of course you of thought have though.
Of course a better solution is to redo the meta packages and split them.
I see you have a Savanah ticket on this so I'll try and make some suggestions
there.
Steve
>
> I also noticed that some of the packages are signed and aren't signed. Can we please
> have signed packages ? With all the automated update tools people are using a hacked
> website can cause big problems.
>
> Cheers,
> Kostas
>
--
Steve Traylen
[log in to unmask]
http://www.gridpp.ac.uk/
|