13 Apr
2014
13 Apr
'14
8:28 a.m.
I'm saying: A single trusted person blindly building and singing packages is more secure than everyone blindly building and signing packages. As others have said: users should not be blindly building and installing
Would it really be that much? How do other distributions manage it? Yes, it would be that much. Other distributions manage it by either having much, much larger communities than us (e.g. Debian), and thus much more
On Apr 11, 2014 4:45 PM, "Taylor Hornby" <havoc@defuse.ca> wrote: packages. Friendly reminder that install scriptlets run as root with no restrictions. potential donators, or by having corporate backing (e.g. Ubuntu, Fedora).