Never heard of it before but hey, it would be great to have it in there.
Note that all the packages are provided by the distributions, not us - that is how it works on Linux in generalā¦ When they are included officially (like in openSUSE, Arch) that makes it super easy to install for users.
WRT packages vs tarball with our updater, I think the updater is generally a better solution because I know and trust the team maintaining that part (usā¦) but of course it is totally understandable that some people prefer packages or trust their distribution to keep things up to date.
It is an awesome tool for Windows admins. I would suggest that you reach out to whoever put it in there to make sure it is pointing to the proper source and all that.
Hello, I just want to tell you guys, that Nextcloud is avariable on OpenBSD-current, on the ports tree and also packages, the very last version to this point.
To confirm NextCloud 11 will be packaged for EPEL7 as the bump in PHP minimum version isnāt until NC12.
At that point Iām not sure what Iāll do yet, as I cannot use SCL in an EPEL package.
My options are:
To maintain 11 for as long as NC maintains support for 11
To retire from EPEL and see if I can maintain it as part of the CentOS SCL SIG
To advise people to use upstream packages, or to switch to RemiRepo, as I believe Remi will continue to maintain it on his PHP stack there using the Fedora SRPMs Iāll be generating
To use the upcoming Fedora nextcloud container on an EL7 box using docker/runc.
However, that decision is indeed still a little way off.
In terms of Fedora at least Nextcloud will be maintained so long as it exists
I ended up packaging NC 10 rather than the 11 build to get through the review quicker as there were some dependency issues.
@morph027 you state explicitly on the page that your packages are not āofficialā. Now you can argue back and forth on that, but this is a community - youāre undeniably part of it, providing these packages for loads of people, and we have no āofficialā stamps for packages, pro or con
You maintain recipes in a public git repo on gitlab, which would be a big requirement if there ever was one for being āofficialā. Another would be getting contributions, having a team - Iām sure youād welcome PRās, though.
What Iām saying is - I donāt want to tell you what to do but I kindly suggest the big disclaimer about this not being āofficialā isnāt really neededā¦
Agreed. But we donāt have automatic updates yet - once we have that I really think it is better if people donāt use packages but use the zip file, from a security point of viewā¦
But it will be impossible to have an automatic updater unless a lot of stuff changes. Right now, if you follow the secure directory guide, it kills the updater from working. You have to log in as root and chown things back to apache. Then you can run the update. Then you have to chown it all back.
Our current security hardening guidelines do not recommend changing ownership or permissions on the files of Nextcloud as the security benefit is largely absent.
See this PR for a bit of information on this. Essentially I believe the issue is that it is so easy to work around the limitation of non-writable application files that it makes no difference while it DOES create a higher barrier to updating which is a far more dangerous situation.
Feel free to engage in the issue above but please provide facts and links to them rather than opinions as this is a well researched topic and Lukas knows his stuff.
FYI I updated the fipo with links to docker, QNAP image and VMā¦ I also linked to it in our install page. It is easier to keep this up to date than the websiteā¦