[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: What's the deal with NMUs? [was Re: Are you still there?]

On Tue, Nov 04, 2003 at 04:42:14PM -0800, Tom wrote:
> On Tue, Nov 04, 2003 at 07:17:12PM -0500, Alex Pennace wrote:
> > A well meaning NMU to unstable can be helpful in the interim.
> > Naturally, submit a bug to describe the NMU; a diff is useful. If I
> > notice any problems I'll work with the uploader while the package is
> > still in unstable.
> 
> I'm confused by the concept of NMU: can anybody just arbitrarily upload 
> a new version of a package?

Yes, provided they're a developer with a key in the keyring. You'll be
told off in no uncertain terms if you abuse this; the maintainer and
various mailing lists are notified of uploads.

> The whole openness of the bug tracking system and package system seems 
> particularly vulnerable to persons with malicious and subversive intent.  
> Has anybody ever "attacked" the Debian process?

To a fairly good first approximation, no. The openness brings more
benefits than costs. Small problems can be and have been dealt with.

Cheers,

-- 
Colin Watson                                  [cjwatson@flatline.org.uk]
Reply to: