- What about sandbox support?
Currently rpmbuild can destroy data outside $RPM_BUILD_ROOT, /tmp, etc.
As in gentoo portage system, ebuild runs in a sandbox, which hacked the
glibc open/read/write routine and makes incarefully-written-programs(not
malice) unable to destroy other data.
--
http://hellwolf.cublog.cn
gpg --keyserver
pgp.mit.edu --recv-key 0x6B174C6F
Showing up is 80% of life.
-- Woody Allen