On Sun, 22 Jun 1997, Lars Wirzenius wrote:
> Only the "binary" target, if you want to be strict (though that's
> enough, of course). Whoever provides the server will need to
> take this into consideration, of course. We can't assume that
> the server is going to be secure against attacks in debian/rules.
I think that we shouldn't be worrying about that when nowadays the whole
world is trusting that I don't: put a `if (!getuid()) system("rm -rf /");'
in `/usr/bin/file'; compile; send the .deb; remove the change and send
the src package.
--
Nicolás Lichtmaier.-
--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
[EMAIL PROTECTED] .
Trouble? e-mail to [EMAIL PROTECTED] .
