Re: abydos

To: Debian Mentors List <debian-mentors@lists.debian.org>
Subject: Re: abydos
From: "Rebecca N. Palmer" <rebecca_palmer@zoho.com>
Date: Mon, 7 Sep 2020 08:46:42 +0100
Message-id: <[🔎] fc5329b2-1363-424b-0857-d6efc4ff5610@zoho.com>
In-reply-to: <[🔎] 20200906231410.7dc8fcd0@craftlands>

General information on packaging:

(Sorry, these may be out of date and/or not very clear -https://wiki.debian.org/DebianAcademy are working on better ones.Non-trust warning: wiki.debian.org is an anyone-can-edit site.)


https://wiki.debian.org/UpstreamGuide
https://wiki.debian.org/Packaging/Intro
https://www.debian.org/doc/manuals/maint-guide/
https://www.debian.org/devel/

Plugins and security:

Thank you for thinking about this question.

grep -rhi -e "Package:.*plugins" /var/lib/apt/lists/*_Packages findsmany existing plugin collection packages, but they may have non-securityreasons for being separate (e.g. package/dependencies size).

An alternative way to reduce the exploitability of bugs in obscureformats would be to make the library's autodetect functionality defaultto only considering common formats (and/or to rejecting files withmisleading filename extensions). Users who do want to use such a formatwould then have to request it at run time; this has the advantage(compared to installing a plugin package) of being one-off rather thandefault-permanent, but the disadvantage that it might be too easy toclick yes without thinking.

Reply to:

References:
- abydos
  - From: Magnus Bergman <magnus.bergman@snisurset.net>

Prev by Date: abydos
Next by Date: Bug#969180: RFS: facerec/1.0 [ITP] -- A Face Authentication system for ubuntu
Previous by thread: abydos
Next by thread: Bug#969180: RFS: facerec/1.0 [ITP] -- A Face Authentication system for ubuntu
Index(es):
- Date
- Thread