2014-10-17 21:43 GMT+02:00 Russ Allbery <r...@debian.org>: > > In contrast, using binary *.o files instead of running the compiler has > *not* been accepted.
IMO shipping .o files is the perfect equivalent of shipping the *.c or *.php output files from a compile with flex or bison. The output of flex and bison is no more human-readable than .o files, even if it is in a higher-level language than binary. I think this has more to do with practical issues > around the likelihood of creating bugs than any specific principle of > philosophical consistency. >From a security and correctness perspective, it seems vital to me to compile from source instead of importing binary code. It is the only practical way to know that the source code matches the compiled code. Regards, Thue
