Summary/Minutes from today's FESCO meeting (2011-12-12 at 1800 UTC)
tmraz at redhat.com
Mon Dec 12 20:34:12 UTC 2011
On Mon, 2011-12-12 at 15:21 -0500, Stephen Gallagher wrote:
> On Mon, 2011-12-12 at 13:16 -0700, Ken Dreyer wrote:
> > On Mon, Dec 12, 2011 at 12:24 PM, Stephen Gallagher <sgallagh at redhat.com> wrote:
> > > * #715 Provenpackager education/status/brainstorming (sgallagh,
> > > 18:43:02)
> > There was some discussion a while back about preventing certain
> > extensions from being uploaded to the lookaside cache. Could ".patch"
> > be added to that list?
> Not a terrible idea. ".diff" should also be a candidate if we go that
> Of course, a whitelist might be a better idea. Maybe we only
> allow .tar.gz, .tar.bz2 and .zip to be uploaded this way and make
> additional exceptions as they arise.
What about running a 'file' command on the stuff and if the output
contains 'text' then allow upload only with some kind of --force option?
No matter how far down the wrong road you've gone, turn back.
More information about the devel