[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]
Re: FAKE: Fedora Extras shipped popular package with rootkit and more than ten thousands systems were infected (was Re: Summary from last weeks FESCo meeting)
- From: Michael Schwendt <bugs michael gmx net>
- To: Discussion related to Fedora Extras <fedora-extras-list redhat com>
- Subject: Re: FAKE: Fedora Extras shipped popular package with rootkit and more than ten thousands systems were infected (was Re: Summary from last weeks FESCo meeting)
- Date: Thu, 1 Jun 2006 18:36:52 +0200
On Thu, 01 Jun 2006 17:00:12 +0200, Thorsten Leemhuis wrote:
> I would even sleep really good if there would be a mechanism that checks
> md5sum's against upstream packages. But that's quite complicated to
> implement and might be to much overhead.
Do you also want to check patches and compressed patches?
> > This discussion would also be useful in the
> > context of developing a mechanism for having a team of people
> > responsible for a package, rather than a single owner.
>
> We really need that. But that's stalled mostly because nobody in FESCo
> really works on driving it forward and the proposal from Patrice is
> still in my Todo-Inbox. :-((
Well, some packagers do it already. They simply talk to eachother and then
add themselves to the Cc field in owners.list, since bugzilla cannot
handle more than a single assignee.
[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]