What about moving all of these binary-only packages in an official overlay (made for the scope) or in GURU?
Il Gio 2 Apr 2020, 02:48 Rich Freeman <ri...@gentoo.org> ha scritto: > On Wed, Apr 1, 2020 at 8:18 PM Alessandro Barbieri > <lssndrbarbi...@gmail.com> wrote: > > > > I have concerns about the inclusion of zoom in ::gentoo. For me it's > more like a malware. > > From the hacker news feed you'll find out that: > > I guess we could stick an einfo in the post-install messages, but if > you're joining a zoom meeting are you going to be any more secure if > you manually install the files instead? I can't imagine that people > are going to stop attending meetings just because they picked the > wrong software to host them. Plus a few of those concerns apply to > MANY packages - such as a lack of end-to-end encryption, or ever > having had a zero day. > > I'm not intending to endorse Zoom here, but Gentoo isn't really > intended as a purist distro that will never include a package if it is > associated with a service that might collect user data and so on. In > fact, we have many packages with these associations. Ultimately users > can decide what they want to run, and we're just providing the files > in the most convenient and secure manner possible. For example, when > the zero day is fixed if you're using Gentoo you'll benefit from our > security policy, while you would not if you had just manually > installed some files/etc... > > -- > Rich > >
