On 3/6/22 13:39, Demi Marie Obenour wrote:
I have also strongly disliked deltarpms. They very rarely help and significantly increase attack surface.
If deltarpm succeeds and both the old .rpm and the new.rpm are signed, then how is the attack surface larger, as long as any consumer verifies the signature? _______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
