On Sat, Feb 10, 2007 at 12:15:13PM -0600, Debian Project Secretary wrote: > This is a notification of a general resolution proposed on the > debian-vote mailing list. On the 8th of February, in a message with > Message-ID: <[EMAIL PROTECTED]> > Bill Allombert <[EMAIL PROTECTED]> proposed: > ------------------------------------------------------- > > The Debian project resolves that Debian developers allowed to perform > combined source and binary packages uploads should be allowed to perform > binary-only packages uploads for the same set of architectures.
How does the project assure that the GPL is correctly followed when a binary-only upload occurs for a package containing GPL code, given that it is not permissible to serve a binary from a server without the exact corresponding source? Same goes for LGPL. Wouldn't Debian be better off moving in the exact opposite direction? If people only uploaded source, which is then build by auto-builders before being made available for download, there would be assurance that the source code actually builds to produce that binary, the dependencies suffice to do the build, and that any nasties introduced can be found by inspecting source. In the past, I've seen FTBFS reports that in some cases have made me wonder how the original x86 binary was built. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
