> Re: Goswin von Brederlow in <[EMAIL PROTECTED]>
Why not set it so they are generated when a package is created?
Am I understanding correctly?
And then they could b gpg signed by the developer???
This adds one more check to the security of the system.
I used debsums just a few days to determine if a package was corrupt,
quite useful.
Is this something that would require maintainers to rebuild their
packages, or could the build machines do it?
--Luke
>
> They are not generated by apt/dpkg, so few people will actually build
> them. Since accidental corruption only occurs accidentally, it would be
> very convenient if the md5sums were already there if something crashes.
> Besides that, if the md5sums are in the package, you can check whether
> the installation went fine.
>
> I don't see where a text file with one line per file installed wastes
> more resources than {pick anything for a package you don't need, e.g.
> 95% of translated manpages, etc.}.
>
> Christoph
> Christoph Berg <[EMAIL PROTECTED]>, http://www.df7cb.de/
> Wohnheim D, 2405, Universität des Saarlandes, 0681/9657944
>
