Re: Using buildds only (was: Results of the meeting...)

To: debian-devel@lists.debian.org
Subject: Re: Using buildds only (was: Results of the meeting...)
From: "W. Borgert" <debacle@debian.org>
Date: Mon, 22 Aug 2005 16:08:47 +0200
Message-id: <[🔎] 1124719727.4309dc6f0b082@webmail.in-berlin.de>
In-reply-to: <[🔎] 20050822134758.GA1326@cloud.net.au>
References: <20050821015824.GT16930@country.grep.be> <[🔎] 4308B9D7.4050305@jones.dk> <[🔎] 20050822062417.GA16866@localhost.localdomain> <[🔎] 1124700358.430990c6b8240@webmail.in-berlin.de> <[🔎] 20050822122242.GA32115@hezmatt.org> <[🔎] 20050822133140.GB32258@piware.de> <[🔎] 20050822134758.GA1326@cloud.net.au>

Quoting Hamish Moffatt <hamish@debian.org>:
> There is the possibility that developer builds get extra features
> enabled due to other installed libraries etc. This could be checked for
> by analysing the packages files for different architectures or similar.

This is a really nice idea: A DD with a strange sense of humour
could "enable an extra feature" in their binary package, that is
not in the source code - at least not in the uploaded source.
Could be a virus, a Trojan horse, a root kit, a time-bomb.  As
>= 95% of our users have i386, it's easy to generate nice damage.

Security-wise, binary uploads are no go.

Cheers, WB

Reply to:

Follow-Ups:
- Re: Using buildds only (was: Results of the meeting...)
  - From: Adrian von Bidder <avbidder@fortytwo.ch>
- Re: Using buildds only (was: Results of the meeting...)
  - From: Hamish Moffatt <hamish@debian.org>

References:
- Re: Results of the meeting in Helsinki about the Vancouver proposal
  - From: Jonas Smedegaard <dr@jones.dk>
- Re: Results of the meeting in Helsinki about the Vancouver proposal
  - From: Sven Luther <sven.luther@wanadoo.fr>
- Using buildds only (was: Results of the meeting...)
  - From: "W. Borgert" <debacle@debian.org>
- Re: Using buildds only (was: Results of the meeting...)
  - From: Matthew Palmer <mpalmer@debian.org>
- Re: Using buildds only (was: Results of the meeting...)
  - From: Martin Pitt <mpitt@debian.org>
- Re: Using buildds only (was: Results of the meeting...)
  - From: Hamish Moffatt <hamish@debian.org>

Prev by Date: Re: Using buildds only (was: Results of the meeting...)
Next by Date: Re: Results of the meeting in Helsinki about the Vancouver proposal
Previous by thread: Re: Using buildds only
Next by thread: Re: Using buildds only (was: Results of the meeting...)
Index(es):
- Date
- Thread