package, package2, package3 naming-with-version exploit
Reindl Harald
h.reindl at thelounge.net
Fri Mar 29 09:33:54 UTC 2013
Am 29.03.2013 10:29, schrieb Vít Ondruch:
> http://www.devconf.cz/slides/mls-pkgmgmt2.pdf
> http://www.youtube.com/watch?v=FNwNF19oFqM
>
> They are using far more advanced techniques using RPM.
>
> Yes, I am aware that it is slightly of-topic, but that was generic remark. The point is, they are trying, they
> probably also fails in certain areas, they have to make prototypes and throw them out, they have workaround missing
> features in RPM. But in comparison to Fedora, they are doing something. We just collecting ideas, brainstorming, we
> are afraid about security and so on. We are so afraid to fail that we rather do nothing.
sometimes it is better to be afraid and do nothing before the damage is done
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 263 bytes
Desc: OpenPGP digital signature
URL: <http://lists.fedoraproject.org/pipermail/devel/attachments/20130329/8151ce85/attachment.sig>
More information about the devel
mailing list