On Tue, Jan 13, 2009 at 03:55:27PM +0100, A Mennucc wrote: > > I don't see this distinction between "upstream" and "mantainer" so > rigid, it would be rather a distinction between "people who know the > code very well" and "people who know the code half well but try to > contribute nonetheless". I for example fall in this second category > regarding freevo, I have submitted many patches and snippets of code, > most are now part of upstream.
Maybe we can start talking about your MPlayer package again then. We as upstream have multiple issues we want to talk about and see rectified... > On Thu, Dec 25, 2008 at 02:18:42PM +0100, Diego Biurrun wrote: > > The openssl fiasco was just a very visible and catastrophic example. > > But let's not forget that most of the time the upstream code is flawed > by itself, with not help from the mantainer: > > http://www.ocert.org/advisories/ocert-2008-016.html Well, if "people who know the code very well" make these fatal mistakes, it's all the more reason for "people who know the code half well but try to contribute nonetheless" to be doubly careful, don't you think? Diego -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
