Archives
Archives
| From: | "William L. Thomson Jr." <wltjr@g.o> | ||
|---|---|---|---|
| To: | gentoo-dev@l.g.o | ||
| Subject: | Re: [gentoo-dev] how to handle sensitive files when generating binary packages | ||
| Date: | Wed, 20 Jun 2007 21:12:19 | ||
| Message-Id: | 1182373774.28954.10.camel@wlt.obsidian-studios.com | ||
| In Reply to: | Re: [gentoo-dev] how to handle sensitive files when generating binary packages by Andrew Gaffney |
||
| 1 | On Wed, 2007-06-20 at 15:53 -0500, Andrew Gaffney wrote: |
| 2 | > |
| 3 | > This still allows the social engineering attack. Someone can get a binpkg |
| 4 | > created with quickpkg of someone else's baselayout and then remove the marking |
| 5 | > that would make portage gripe. |
| 6 | |
| 7 | That's providing people pay attention to portage griping in the first |
| 8 | place. Which I would assume most don't :) Unless they have to. |
| 9 | |
| 10 | -- |
| 11 | William L. Thomson Jr. |
| 12 | Gentoo/Java |
| File name | MIME type |
|---|---|
| signature.asc | application/pgp-signature |
| Subject | Author |
|---|---|
| [gentoo-dev] User warnings (Was Re: how to handle sensitive files when generating binary packages) | Steve Long <slong@××××××××××××××××××.uk> |