On Thu, 2006-06-08 at 21:35 +0100, Ciaran McCreesh wrote: > On Thu, 08 Jun 2006 23:52:50 +0400 "Peter Volkov (pva)" > <[EMAIL PROTECTED]> wrote: > | > Will you also review the code each and every ebuild pull down over > | > the internet? > | > | And that is really exciting moment. :) The main difference between > | such overlay and wiki is that reading text never does `rm -rf /`. How > | can one stop such jokes? I think if this problem will be solved such > | overlay should be. > > Somehow I think certain people aren't quite grasping the potential > security breaches with this whole thing... Slipping in malicious and > hard to detect code that gets executed by everybody is very very easy.
You mean like: perl -e 'print i=pack(c5,(41*2),sqrt(7056),(unpack(c,H)-2),oct(115),10);' I'm sure everyone will get what that means in a quick cursory glance... and of course repoman will know what it does, right? *grin* -- Chris Gianelloni Release Engineering - Strategic Lead x86 Architecture Team Games - Developer Gentoo Linux
signature.asc
Description: This is a digitally signed message part
