On 07/06/2011 03:19 AM, Michael Schwendt wrote: > If we include the whole show in the src.rpm, how does that add any safety?
It doesn't make the system bulletproof, but it makes it a little harder to break, and, perhaps more importantly, adds accountability, i.e. helps to figure out at which point the source was corrupted. Remember the original Linux kernel trojan: it was discovered because the bitkeeper checksums showed an unaccounted-for chunk. -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
