Re: Discarding uploaded binary packages
On Tuesday, October 16, 2012 05:04:55, martin f krafft wrote:
> also sprach Holger Levsen <firstname.lastname@example.org> [2012.10.16.0945 +0200]:
> > > We have not cared enough for almost 20 years that 9 out of 10 binary
> > > packages in use (i386 until 2005, amd64 since then) are built on
> > > machines that are individually maintained according to widely
> > > varying security standards to do anything about it, AFAICT.
> > your point being?
> That our users don't seem to care, and that probably is why we
> haven't done anything about it.
Out of curiosity, how would a user /know/ whether a package has been built via
a buildd rather than on a DD's local machine?