also sprach Henning Makholm <henning@makholm.net> [2006.08.31.1641 +0200]:
> Please read up on the regular (every few months) discussions about
> "source-only uploads" in the list archives. (Capsule summary: yes,
> it would be easy to do, but there is no consensus that it would be
> *desirable* to do so).
For instance: http://lists.debian.org/debian-devel/2006/07/msg00544.html
You say people have argued against source-only uploads, but I think
source-only is actually not what we are talking about. The subject
line says: "recompile...".
Whether or not requiring binary packages in the upload as a QA sort
of measure is a good thing is a tangential debate.
I would like to know why we can't just discard those binaries and
rebuild them on trusted machines. Then we get the best of all
worlds.
(Arguably I failed to express myself properly in the last post).
--
Please do not send copies of list mail to me; I read the list!
.''`. martin f. krafft <madduck@debian.org>
: :' : proud Debian developer, author, administrator, and user
`. `'` http://people.debian.org/~madduck http://debiansystem.info
`- Debian - when you have better things to do than fixing systems
"i feel sorry for people who don't drink. when they wake up in the
morning, that's as good as they're going to feel all day."
-- frank sinatra
Attachment:
signature.asc
Description: Digital signature (GPG/PGP)