2014-04-28 19:33 GMT+02:00 Reindl Harald <h.rei...@thelounge.net>:
> Am 28.04.2014 19:27, schrieb Miloslav Trmač:
> > 2014-04-28 19:13 GMT+02:00 Reindl Harald:
> > you can make signed fedora packages trusted and allow them
> > at install or first start to interact with firewalld
> >
> > I can't; ptrace() doesn't make such a distinction.
>
> than that needs to be improved
We are working on improving it. It will still take quite a lot of time I'm
afraid.
> > Still, the combined measures need to mitigate at least, say, 75% of
> cases,
> > otherwise we're not really having enough impact
>
> in a perfect world yes, even more than 75%
>
> in reality: only *the one an donly* case which affects me untila update is
> released
> we need the > 75% because we don't know what is needed when
>
Good point, the "new system needs to be safely updatable" is an important
case to consider. (It's also the easiest one to handle, by not having the
service start, and testing for that.)
Mirek
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
