Re: List of consultants focusing on Debian packaging for Java?

To: Hans-Christoph Steiner <hans@at.or.at>
Cc: lists@antonin.delpeuch.eu, debian-java@lists.debian.org
Subject: Re: List of consultants focusing on Debian packaging for Java?
From: Fabrice BAUZAC <noon@mykolab.com>
Date: Sat, 12 Dec 2020 00:48:38 +0100
Message-id: <[🔎] 87360boqeh.fsf@mykolab.com>
In-reply-to: <[🔎] 9272466e-c771-3b08-7c2f-205fa4d92912@at.or.at> (message from Hans-Christoph Steiner on Mon, 7 Dec 2020 14:26:01 +0100)

Hans-Christoph Steiner <hans@at.or.at> writes:

> Third party package repositories are a thing, like Ubuntu PPAs, aptly,
> JFrog Debian Repositories, etc.  Unfortunately, due to Debian Apt's
> design, that means giving root access to each repository (package
> pre-install/remove/etc scripts are run as root).

I don't think it is related to APT, but rather it is a risk that is very
common to packages like deb, rpm or similar that can run arbitrary code
as root.

Reply to:

References:
- Re: List of consultants focusing on Debian packaging for Java?
  - From: Hans-Christoph Steiner <hans@at.or.at>

Prev by Date: Re: List of consultants focusing on Debian packaging for Java?
Next by Date: Re: Ask for help on new pkg xperia-flashtool on classpath
Previous by thread: Re: List of consultants focusing on Debian packaging for Java?
Next by thread: Re: List of consultants focusing on Debian packaging for Java?
Index(es):
- Date
- Thread