Re: debsums for maintainer scripts (was: Re: Revival of the signed debs discussion)

To: christophe barbe <christophe@cattlegrid.net>
Cc: Debian Devel <debian-devel@lists.debian.org>, Andreas Barth <aba@not.so.argh.org>, Michael Ablassmeier <abi@grinser.de>, debsums@packages.debian.org
Subject: Re: debsums for maintainer scripts (was: Re: Revival of the signed debs discussion)
From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>
Date: 02 Dec 2003 04:17:47 +0100
Message-id: <[🔎] 87oeurkiw4.fsf@mrvn.homelinux.org>
In-reply-to: <[🔎] 20031201221236.GA23983@cattlegrid.net>
References: <[🔎] 8765h0mzk1.fsf@mrvn.homelinux.org> <[🔎] 3FCB50A2.90907@beamnet.de> <[🔎] 20031201161124.GA21059@complete.org> <[🔎] 20031201170828.GA17611@zombie.inka.de> <[🔎] 20031201184317.GA1760@mail.schiach.de> <[🔎] 20031201185609.GA14602@cattlegrid.net> <[🔎] 20031201201152.GF17282@mails.so.argh.org> <[🔎] 20031201221236.GA23983@cattlegrid.net>

christophe barbe <christophe@cattlegrid.net> writes:

> On Mon, Dec 01, 2003 at 09:11:52PM +0100, Andreas Barth wrote:
> > > Before mass bug-filling, it would be necessary to make it mandatory
> > > which unfortunately is not the case right now afaik. 
> > 
> > Severity: wishlist
> > Where is the problem?
> 
> Waste of time ?
> If it's not mandatory, a full coverage will never happen and without
> full coverage, most avantages of md5sum are lost.
> In my opinion it's not difficult to add it to packages without it.
> As soon as it's mandatory, NMU in delayed queue will be justified and I
> am sure it would not be long to get full coverage.
> Of course that post-sarge.
> 
> I don't see why adding a md5dsum_are_mandatory clause to the debian
> policy would be difficult (what would be a good reason to not add md5sum
> to a package?). 
> 
> Christophe

Because they waste space and give 0 security. See other mail.

MfG
        Goswin

Reply to:

References:
- Revival of the signed debs discussion
  - From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>
- Re: Revival of the signed debs discussion
  - From: Thomas Viehmann <tv@beamnet.de>
- Re: Revival of the signed debs discussion
  - From: John Goerzen <jgoerzen@complete.org>
- debsums for maintainer scripts (was: Re: Revival of the signed debs discussion)
  - From: Eduard Bloch <edi@gmx.de>
- Re: debsums for maintainer scripts (was: Re: Revival of the signed debs discussion)
  - From: Michael Ablassmeier <abi@grinser.de>
- Re: debsums for maintainer scripts (was: Re: Revival of the signed debs discussion)
  - From: christophe barbe <christophe@cattlegrid.net>
- Re: debsums for maintainer scripts (was: Re: Revival of the signed debs discussion)
  - From: Andreas Barth <aba@not.so.argh.org>
- Re: debsums for maintainer scripts (was: Re: Revival of the signed debs discussion)
  - From: christophe barbe <christophe@cattlegrid.net>

Prev by Date: Re: debsums for maintainer scripts (was: Re: Revival of the signed debs discussion)
Next by Date: Re: autoconf AC_SYS_LARGEFILE
Previous by thread: Re: debsums for maintainer scripts (was: Re: Revival of the signed debs discussion)
Next by thread: Re: debsums for maintainer scripts
Index(es):
- Date
- Thread