[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: QA process was Re: RPM submission procedure

From: Rudi Chiarito <nutello sweetness com>
To: fedora-devel-list redhat com
Subject: Re: QA process was Re: RPM submission procedure
Date: Thu, 8 Jan 2004 21:20:36 +0100

On Thu, Jan 08, 2004 at 03:04:15PM -0500, Toshio wrote:
> Source URL had changed....  Perhaps having the autobuilder not build new
> packages or packages with new Source URLs (hosts?) without having peer
> review done first would be sufficient?

You could still have the package served by a CGI that returns a
malicious version of the archive if and only if being fetched from the
host(s) the autobuilder runs on, while handing everyone else the benign
version.

Rudi

References:
- Re: RPM submission procedure
  - From: Jef Spaleta
- Re: RPM submission procedure
  - From: Michael Schwendt
- Re: RPM submission procedure
  - From: Steven Pritchard
- QA process was Re: RPM submission procedure
  - From: Ronny Buchmann
- Re: QA process was Re: RPM submission procedure
  - From: Toshio
- Re: QA process was Re: RPM submission procedure
  - From: Stefan van der Eijk
- Re: QA process was Re: RPM submission procedure
  - From: Toshio

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]