gross DNF bandwidth inefficiency if filesystem space limited
Kevin Fenzi
kevin at scrye.com
Mon Aug 3 14:35:49 UTC 2015
On Mon, 03 Aug 2015 05:53:15 +0200
Kevin Kofler <kevin.kofler at chello.at> wrote:
> Kevin Fenzi wrote:
> > * There could be some nasty issues with keeping known
> > vulnerable/broken packages around. ie, foo-1.0 has a severe
> > security bug, foo-1.1 fixes it. You now just need to trick someone
> > into downgrading or directly installing foo-1.0 (which is in normal
> > repos and signed and completely valid looking).
>
> But there are plenty of even older packages in the GA repository,
> also signed with the same key.
Sure, but this increases the exposure.
kevin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://lists.fedoraproject.org/pipermail/devel/attachments/20150803/8393aa11/attachment.sig>
More information about the devel
mailing list