ABRT frustrating for users and developers
Thomas Moschny
thomas.moschny at gmail.com
Mon Jan 18 12:28:44 UTC 2010
2010/1/18 Jiri Moskovcak <jmoskovc at redhat.com>:
>> Plus abrt should run `rpm -V' on any rpm involved in the transaction (=if
>> user
>> does not have replaced the binary by some non-rpm "make install").
>
> ABRT used to do this (and still can, it's just disabled), but rpm -V uses
> prelink to un-prelink the binaries to check the MD5 sum and security guys
> don't like it.
Can you explain what's the security problem here?
The outcome would be a boolean and a reject to send the report (or at
least a big warning).
- Thomas
More information about the devel
mailing list