| 1 |
On Wed, 2007-20-06 at 17:19 -0400, Mike Frysinger wrote: |
| 2 |
> On Wednesday 20 June 2007, Ciaran McCreesh wrote: |
| 3 |
> > On Wed, 20 Jun 2007 16:54:34 -0400 |
| 4 |
> > |
| 5 |
> > Mike Frysinger <vapier@g.o> wrote: |
| 6 |
> > > On Wednesday 20 June 2007, Ciaran McCreesh wrote: |
| 7 |
> > > > Mike Frysinger <vapier@g.o> wrote: |
| 8 |
> > > > > being able to generate binary packages that actually reflect the |
| 9 |
> > > > > live $ROOT is desirable |
| 10 |
> > > > |
| 11 |
> > > > Is being able to generate redistributable binary packages that |
| 12 |
> > > > reflect the live ROOT desirable? |
| 13 |
> > > |
| 14 |
> > > that's a feature that exists now that there's no reason to |
| 15 |
> > > disable ... not that it can be disabled |
| 16 |
> > |
| 17 |
> > I'm not suggesting forcibly disabling it, merely marking binary |
| 18 |
> > packages as "designed for distribution" or "not designed for |
| 19 |
> > distribution", not accepting the latter on other systems and |
| 20 |
> > requiring explicit user action to turn the latter into the former. |
| 21 |
> > |
| 22 |
> > The specific underlying question being, what are the use cases for |
| 23 |
> > binary packages? |
| 24 |
> |
| 25 |
> the use of the binpkg is not an issue, it's the creation ... people blindly |
| 26 |
> creating tbz2's which could contain their sensitive files and posting them |
| 27 |
> |
| 28 |
> i'll just go ahead with the feedback from Olivier and have quickpkg skip |
| 29 |
> CONFIG_PROTECT by default |
| 30 |
|
| 31 |
This will by default create potentially broken packages (since many just |
| 32 |
wont work without their CONFIG_PROTECTed files). That's why I suggested |
| 33 |
a big fat warning and accepting that we can't protect users against |
| 34 |
themselves or against social engineering (aka their own stupidity). |
| 35 |
|
| 36 |
-- |
| 37 |
Olivier CrĂȘte |
| 38 |
tester@g.o |
| 39 |
Gentoo Developer |
Archives