ext Thiago Macieira <[email protected]> writes: > The repository-installation instructions must not be activatable by a > simple browser. A dedicated application should be required. So no > "click here to add my repo" webpages.
I don't know, would be nice to allow this, if we can make it safe. > Otherwise, this could open up security risks that foreign repositories are > added and start overriding core packages. The security framework in Harmattan (which I think is coming to MeeGo, too), can help here: It remembers the 'origin' of a package, and only allows updates to it from the same origin. _______________________________________________ MeeGo-dev mailing list [email protected] http://lists.meego.com/listinfo/meego-dev
