On Wed, Jun 29, 2022 at 1:46 PM Ravi Dwivedi wrote:
> Since the below mentioned analysis of Debian's security, and that too
> compared to other distros, is not very well-known outside of Debian
> project
honestly i don't believe it's even widely known *in* the debian project
[quite how damn good
Since the below mentioned analysis of Debian's security, and that too
compared to other distros, is not very well-known outside of Debian
project(it didn't come up in any internet searches, the web of trust
gets mentioned but there is not much explanation on it), I suggest
writing in somewhere
On Mon, May 23, 2022 at 7:59 PM Adam McKenna wrote:
> You are talking about a deterrent though. I think the question is,
> what if someone cares more about their political cause than
> retaining their uploader access?
they get one and only one chance to do something that stupid.
> What if someo
> they get one and only one chance to do something that stupid.
So the answer is that we have no way of preventing a developer from
intentionally sabotaging a package in any / as many ways as they choose and
the only risk to them is losing their uploader access after the fact?
>the response is sw
> anyone stupid enough to abuse their position may only do so once, at
which point their GPG key is revoked.
You are talking about a deterrent though. I think the question is, what if
someone cares more about their political cause than retaining their
uploader access?
What if someone's keys are
On Mon, May 23, 2022 at 07:22:40PM +0100, lkcl wrote:
> > > i believe the answer is in the question. debian is based on distributed
> > > trust. i did the analysis (took 3 weeks): it is literally the only
> > > distro in the world with an inviolate chain of trust from a large keyring
> > > dati
On Mon, May 23, 2022 at 6:28 PM Adam McKenna wrote:
>
> > i believe the answer is in the question. debian is based on distributed
> > trust. i did the analysis (took 3 weeks): it is literally the only distro
> > in the world with an inviolate chain of trust from a large keyring dating
> > back
> i believe the answer is in the question. debian is based on distributed
trust. i did the analysis (took 3 weeks): it is literally the only distro
in the world with an inviolate chain of trust from a large keyring dating
back 20 years that is itself GPG-signed as a package, with a package
distrib
> Do you have a publication of that analysis? I was thinking the same
> about the organization of Debian for some time but never did analysis
> or compared it to other distros.
i found it here http://lkcl.net/reports/wot/ it's dated 2017 (not a bad
guess, 4 years). please bear in mind, the primary
> i did the analysis (took 3 weeks)
Do you have a publication of that analysis? I was thinking the same
about the organization of Debian for some time but never did analysis
or compared it to other distros.
Also I like to add that reproducible builds are an excellent addition
to the mechanisms yo
Oh
On Mon, 18 Apr 2022, 00:00 Daniel Pocock, wrote:
>
> On 17/04/2022 19:26, Satvik Sinha wrote:
> > Hi,guys and Good Day! So in recent days ,it was observed that many open
> > source contributors vandalised their or someone else's project's
> > reputation to show agendas of Russia-Ukraine war,
On 17/04/2022 19:26, Satvik Sinha wrote:
> abusing your OS's reputation?
i believe the answer is in the question. debian is based on distributed trust.
i did the analysis (took 3 weeks): it is literally the only distro in the world
with an inviolate chain of trust from a large keyring datin
On 17/04/2022 19:26, Satvik Sinha wrote:
> Hi,guys and Good Day! So in recent days ,it was observed that many open
> source contributors vandalised their or someone else's project's
> reputation to show agendas of Russia-Ukraine war, Some even vandalised
> their project to destroy system in Russ
Quoting Nathan L. (spychicken2...@gmail.com):
> Turns out I screwed up and typoed the hostname, please disregard this
> report.
Aha, that happens:
You probably want to read Jaldhar H. Vyas blog, I think...
http://www.braincells.com/debian/
Particularly the "About La Salle D
On Thu, 09 Oct 2014 19:26:17 -0400 Nathan2055 <
spychicken2055+deb...@gmail.com> wrote:
> Package: general
> Severity: minor
>
> The login screen for Debian misspells Debian's name as "debain."
>
>
>
> -- System Information:
> Debian Release: 7.6
>
On Wed, Feb 12, 2014 at 14:08 +0100, forum::für::umläute wrote:
> On 2014-02-12 13:47, ANGESH KUMAR wrote:
> > I want to make a debian package of my software so how to that
> > one. I couldn't find any proper document. can you help me by document or
> > link so that i can understand. a
hi.
On 2014-02-12 13:47, ANGESH KUMAR wrote:
> hello sir,
not exactly ;-)
>
> I want to make a debian package of my software so how to that
> one. I couldn't find any proper document. can you help me by document or
> link so that i can understand. at last I want to install of my sof
hello sir,
I want to make a debian package of my software so how to that
one. I couldn't find any proper document. can you help me by document or
link so that i can understand. at last I want to install of my software like
apt-get install safesquid(my software).so waht i have to do.
i
On Sat, Aug 05, 2006 at 09:18:39AM -0600, Joseph Smidt wrote:
> I just posted a blog: blog.thedebianuser.org/?p=13, where I outline
>how I feel: that working through examples using .diff files teaches how
>to package better then trying to learn from documentation alone. The blog
>
I just posted a blog: blog.thedebianuser.org/?p=13, where I outline how I feel: that working through examples using .diff files teaches how to package better then trying to learn from documentation alone. The blog isn't he most complete, but it outlines my basic idea.
The reason I am tel
On Mon, 22 Sep 2003, Andreas Schuldei wrote:
> better with Debian, and for that reason thankfully accepts
> Raphael Herzogs offer to continue its effords as the Debian-Edu
> subproject, taking it over.
Congratulations!
> * To avoid the Knoppix-effect.
This is a great wording!
Good luck for your
On Sun, Aug 25, 2002 at 01:46:26AM -0400, Mike wrote:
> hi i have a 6 gig drive on my old puter i wanna put debail on 3 gigs is that
> enough room, thank you
I guess it depends on what you want to do. I've fit debian on a 200MB drive
and I've filled a 2GB drive as well. It just depends on what y
hi i have a 6 gig drive on
my old puter i wanna put debail on 3 gigs is that enough room, thank
you
e who watched all this procedure still in doubt that he could repeat
it by himself on his home computer, but I hope it does not seem to him totally
impossible.
I hope to install Debain 2.0 on at least one more computer PII-266 from
scratch soon. Anything special I should look for?
Thank you fo
24 matches
Mail list logo
