Re: (inc. note from dpkg developers) Re: Bug#XXXXXX: (far too many packages) needs rebuilt for prelinking

To: Adam Heath <doogie@debian.org>
Cc: debian-devel@lists.debian.org
Subject: Re: (inc. note from dpkg developers) Re: Bug#XXXXXX: (far too many packages) needs rebuilt for prelinking
From: Jack Howarth <howarth@bromo.msbb.uc.edu>
Date: Mon, 13 Jan 2003 12:46:11 -0500 (EST)
Message-id: <[🔎] 200301131746.MAA09907@bromo.msbb.uc.edu>

Adam,
   Agreed you have a point there on the untrusted binary. I haven't looked
at the most recent rpm sources to see if they are running an external 
copy of prelink to verify the binary or if they have embedded that
functionality into rpm. I would think that embedding the prelink --verify
code into rpm and dpkg should eliminate the grounds for your concerns
about trustworthy programs. 
    As to the concept of modifying the binaries, have you actually
installed prelink so you can read the man page? What it is doing is
not unheard of. SGI does this sort of thing in Irix with QuickRestarting
and Apple does it in MacOS X with their prebinding. As far as I know
all of these approaches modify the binaries by their very nature.
                               Jack

Reply to:

Follow-Ups:
- Re: (inc. note from dpkg developers) Re: Bug#XXXXXX: (far too many packages) needs rebuilt for prelinking
  - From: Adam Heath <doogie@debian.org>

Prev by Date: Re: Make debconf mandatory for prompting the user
Next by Date: Re: Bug#176477: ITP: rott -- Rise of the Triad, a first person shooter
Previous by thread: Packaging of SashXB
Next by thread: Re: (inc. note from dpkg developers) Re: Bug#XXXXXX: (far too many packages) needs rebuilt for prelinking
Index(es):
- Date
- Thread