[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#39299: PROPOSAL] permit/require use of bz2 for source packages

Hi,
>>"Branden" == Branden Robinson <branden@ecn.purdue.edu> writes:

 Branden> On Thu, Jun 10, 1999 at 01:22:26PM -0600, Marcelo E. Magallon wrote:
 >> On Thu, Jun 10, 1999 at 02:02:35PM -0500, Chris Lawrence wrote:
 >> 
 >> > I further propose that the use of bzip2 be mandatory for newly uploaded
 >> > source files
 >> 
 >> Upstream doesn't always provide .tar.bz2 packages.

 Branden> As said elsewhere, I think a source package can be regarded
 Branden> as "pristine" if it is md5-identical with the upstream
 Branden> version in *uncompressed* form.

        I disagree. I have sources, and md5sums, or pgp signatures,
 that are signed by the author. Anything that changes the md5sum of
 the file and makes it impossible for me to check against the original
 signature is not pristine. 

        manoj
-- 
 Q: What's buried in Grant's tomb? A: A corpse.
Manoj Srivastava   <srivasta@debian.org>  <http://www.debian.org/%7Esrivasta/>
Key C7261095 fingerprint = CB D9 F4 12 68 07 E4 05  CC 2D 27 12 1D F5 E8 6E
Reply to: