Re: sofftware outside Debian (Re: holes in secure apt)

To: debian-devel@lists.debian.org
Subject: Re: sofftware outside Debian (Re: holes in secure apt)
From: Holger Levsen <holger@layer-acht.org>
Date: Tue, 17 Jun 2014 13:39:57 +0200
Message-id: <[🔎] 201406171339.58577.holger@layer-acht.org>
In-reply-to: <[🔎] 1402941997.4787.84.camel@heisenberg.scientia.net>
References: <[🔎] 1402527988.4739.34.camel@heisenberg.scientia.net> <[🔎] 201406122306.53939.holger@layer-acht.org> <[🔎] 1402941997.4787.84.camel@heisenberg.scientia.net>

Hi Christoph,

On Montag, 16. Juni 2014, Christoph Anton Mitterer wrote:
> Well I guess the reason for flash is rather the license, isn't it?

no, it's in contrib, because it's a downloader package.

> Anyway... just because something it in contrib/non-free for legal
> reasons... I see no necessity to handle such packages less secure.

both torbrowser-launcher as well as flashplugin-nonfree use gpg to verify 
securely what they've downloaded.

so I guess you will need to pick on other examples ;-) And just file bugs when 
you find these. And probably suggest a patch to Debian policy :-)

cheers,
	Holger

Attachment: signature.asc
Description: This is a digitally signed message part.

Reply to:

Follow-Ups:
- Re: sofftware outside Debian (Re: holes in secure apt)
  - From: Christoph Anton Mitterer <calestyo@scientia.net>

References:
- holes in secure apt
  - From: Christoph Anton Mitterer <calestyo@scientia.net>
- sofftware outside Debian (Re: holes in secure apt)
  - From: Holger Levsen <holger@layer-acht.org>
- Re: sofftware outside Debian (Re: holes in secure apt)
  - From: Christoph Anton Mitterer <calestyo@scientia.net>

Prev by Date: Re: Password Protecting GPG Keys
Next by Date: Re: HTTPS everywhere!
Previous by thread: Re: sofftware outside Debian (Re: holes in secure apt)
Next by thread: Re: sofftware outside Debian (Re: holes in secure apt)
Index(es):
- Date
- Thread