What's the deal with NMUs? [was Re: Are you still there?]

To: debian-devel@lists.debian.org
Cc: Andrés Roldán <aroldan@debian.org>
Subject: What's the deal with NMUs? [was Re: Are you still there?]
From: Tom <tb.31020.nospam@comcast.net>
Date: Tue, 4 Nov 2003 16:42:14 -0800
Message-id: <[🔎] 20031105004214.GA4007@comcast.net>
Mail-followup-to: debian-devel@lists.debian.org, Andrés Roldán <aroldan@debian.org>
In-reply-to: <[🔎] 20031105001712.GA29095@buick.pennace.org>
References: <[🔎] 874qxk3pm6.fsf@volatile.central.fluidsignal.com> <[🔎] 20031105001712.GA29095@buick.pennace.org>

On Tue, Nov 04, 2003 at 07:17:12PM -0500, Alex Pennace wrote:
> A well meaning NMU to unstable can be helpful in the interim.
> Naturally, submit a bug to describe the NMU; a diff is useful. If I
> notice any problems I'll work with the uploader while the package is
> still in unstable.

I'm confused by the concept of NMU: can anybody just arbitrarily upload 
a new version of a package?  I have a feeling that are some controls but 
it seems pretty wild and wooly, and subject to abuse.

The whole openness of the bug tracking system and package system seems 
particularly vulnerable to persons with malicious and subversive intent.  
Has anybody ever "attacked" the Debian process?  Are there specific 
controls in place to prevent "attacks", or has it just never come up?

Reply to:

Follow-Ups:
- Re: What's the deal with NMUs? [was Re: Are you still there?]
  - From: Bernd Eckenfels <lists@lina.inka.de>
- Re: What's the deal with NMUs? [was Re: Are you still there?]
  - From: Colin Watson <cjwatson@debian.org>

References:
- Are you still there?
  - From: Andrés Roldán <aroldan@debian.org>
- Re: Are you still there?
  - From: Alex Pennace <alex@pennace.org>

Prev by Date: Re: Are you still there?
Next by Date: Re: What's the deal with NMUs? [was Re: Are you still there?]
Previous by thread: Re: Are you still there?
Next by thread: Re: What's the deal with NMUs? [was Re: Are you still there?]
Index(es):
- Date
- Thread