Re: Source in upload?

To: debian-mentors@lists.debian.org
Subject: Re: Source in upload?
From: Mitch Blevins <mblevin@debian.org>
Date: Thu, 19 Nov 1998 01:57:49 -0500
Message-id: <[🔎] 19981119015749.A29647@turd.mountaintop>
Reply-to: Mitch Blevins <mblevin@debian.org>
In-reply-to: <[🔎] oavhkcure3.fsf@burrito.fake>; from Adam Di Carlo on Thu, Nov 19, 1998 at 01:29:40AM -0500
References: <[🔎] 19981115225005.A24492@turd.mountaintop> <[🔎] 873e7ks1ae.fsf@nocrew.org> <[🔎] 19981116002534.A24547@turd.mountaintop> <[🔎] oavhkcure3.fsf@burrito.fake>

Adam Di Carlo wrote:
> "Mitch" == Mitch Blevins <mblevin@debian.org> writes:
> > James Troup wrote:
> >> Yep. `-sa' to dpkg-buildpackage is your friend.  See the fine
> >> manual for more details.
> 
> > =20 Very good, thanks.  This will help me to avoid this problem in
> > the future.  For now, do I just manually upload the *.orig.tar.gz?
> 
> Nope.  The .changes file, PGP-signed, must contain a line for the
> .orig.tar.gz as well as a proper MD5sum, or the .orig.tar.gz file will
> not get picked up.  And thank god, otherwise we'd have a gaping
> security hole.
> 
> Just rebuild with 'dpkg-buildpackage -sa ...' as James pointed out.
> No way around it.

 This is what I did.  Thanks for the feedback.

 -Mitch

Reply to:

References:
- Source in upload?
  - From: Mitch Blevins <mblevin@debian.org>
- Re: Source in upload?
  - From: James Troup <james@nocrew.org>
- Re: Source in upload?
  - From: Mitch Blevins <mblevin@debian.org>
- Re: Source in upload?
  - From: Adam Di Carlo <apharris@burrito.onshore.com>

Prev by Date: Re: Source in upload?
Next by Date: Re: xwatch package done
Previous by thread: Re: Source in upload?
Next by thread: Re: Advice packaging jazip (suid!!)
Index(es):
- Date
- Thread