xarchiveshash:a1051a90f62a663f8b89fab0751cde6c

public inbox for gentoo-dev@lists.gentoo.org
 help / color / mirror / Atom feed

Search results ordered by [date|relevance]  view[summary|nested|Atom feed]
thread overview below | download:

* Re: [gentoo-dev] Revisiting GLEP 19
  @ 2004-07-21 15:36 99% ` Stuart Herbert
  0 siblings, 0 replies; 1+ results
From: Stuart Herbert @ 2004-07-21 15:36 UTC (permalink / raw
  To: gentoo-dev

[-- Attachment #1: Type: text/plain, Size: 1578 bytes --]

On Wednesday 21 July 2004 16:25, aeriksson@fastmail.fm wrote:
> I second that feeling. If what we're trying to achieve is to have a
> way to signal to the sysadmins that a security update is present, why
> not just add a [S] entry to 'emerge -pv'? 

Two things.  First off, I'd hope to achieve a lot more than just adding a [S] 
entry to emerge -pv.

Secondly, where do you think Portage will get the information from to decide 
whether or not to add the [S]?  Right now, the design of the glsa toolset is 
to bolt this information onto the side.  With XML-based changelogs, the 
information could be stored where it belongs - in the list of what has 
changed and why.

> That way the community 
> packaging gentoo can stay on step with the development of the upstream
> project (low cost), and the sysadmin was to decide (and take the cost)
> for doing the upgrade of his installed packages with security holes.

Done well (ie, providing a tool so that devs don't *have* to hack XML files by 
hand), XML Changelogs should add no extra cost.  They would also make 
third-party GUIs like Porthole and packages.gentoo.org much simpler to write 
and maintain.

Best regards,
Stu
-- 
Stuart Herbert                                              stuart@gentoo.org
Gentoo Developer                                       http://www.gentoo.org/
                                                   http://stu.gnqs.org/diary/

GnuPG key id# F9AFC57C available from http://pgp.mit.edu
Key fingerprint = 31FB 50D4 1F88 E227 F319  C549 0C2F 80BA F9AF C57C
--

[-- Attachment #2: signature --]
[-- Type: application/pgp-signature, Size: 189 bytes --]

^ permalink raw reply	[relevance 99%]

Results 1-1 of 1 | reverse | options above

-- pct% links below jump to the message on this page, permalinks otherwise --
2004-07-21 15:25     [gentoo-dev] Revisiting GLEP 19 aeriksson
2004-07-21 15:36 99% ` Stuart Herbert
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox