| 1 |
On Fri, 19 May 2006 01:53:29 +0200 "Kevin F. Quinn" |
| 2 |
<kevquinn@g.o> wrote: |
| 3 |
| obviously header.txt and skel.* aren't important. scripts isn't too |
| 4 |
| important either, although a manifest-style file in there wouldn't be |
| 5 |
| difficult. licenses and metadata don't have any security impact so |
| 6 |
| there's little point there, also. |
| 7 |
|
| 8 |
metadata has security impact. |
| 9 |
|
| 10 |
| do profiles present a security risk? Perhaps by masking/unmasking |
| 11 |
| fixed/vulnerable versions of packages. |
| 12 |
|
| 13 |
Or by using a bashrc, perhaps? Profiles most definitely do have |
| 14 |
security impact. |
| 15 |
|
| 16 |
-- |
| 17 |
Ciaran McCreesh |
| 18 |
Mail : ciaran dot mccreesh at blueyonder.co.uk |
| 19 |
|
| 20 |
|
| 21 |
-- |
| 22 |
gentoo-dev@g.o mailing list |
Archives