Hi,
>>"Jim" == Jim Van Zandt <[EMAIL PROTECTED]> writes:
Jim> I think the ".. pathname component" problem deserves some
Jim> attention. What does anybody think about these steps?
Jim> 1) Incoming Debian source packages should be automatically
Jim> scanned, and offending files flagged.
Jim> 2) GNU tar should refuse to unpack such a tar file, unless
Jim> enabled by a switch.
Jim> 3) GNU tar should refuse to create such a tar file, unless
Jim> enabled by a switch.
I hope you mean ask the upstream authors to change GNU tars
behaviour, and not that Debian should do a major change in behaviour
on it's own. In case we even consider doing such a thing, it should
be *off* by default, and turned on (by dpkg and friends) with a
special switch.
manoj
--
"I went to a job interview the other day, the guy asked if I had any
questions. I said yes, just one, if you're in a car traveling at the
speed of light and you turn your headlights on, does anything happen?
He said he couldn't answer that. I told him sorry, but I couldn't
work for him then." Steven Wright
Manoj Srivastava <url:mailto:[EMAIL PROTECTED]>
Mobile, Alabama USA <url:http://www.datasync.com/%7Esrivasta/>
--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
[EMAIL PROTECTED] . Trouble?
e-mail to [EMAIL PROTECTED] .
