On 17.03.2004 17:27, Sam Varshavchik wrote:
The current set of options which can be "short-circuit"'ed are fine. However, from a security perspective, I would be very bothered by an easy method of creating binary rpms which could not be rebuilt by the source rpm.
Again: nobody wants to distribute the binary RPMs.
This for hacking/debugging only.
Say that I'm trying to chase down a kernel bug. I have the kernel source rpm unpacked and compiled in BUILD.
I'd like to be able to play with the kernel source, make small changes, and be able to quickly build installable kernel RPMs for testing purposes, instead of waiting two fscking hours to rebuild the whole bloody mess from scratch all because of a one or a two-line change.
I agree. As long as the short-circuited binary RPM has the correct "Source RPM" field value (e.g. something like "short-circuited") this should not create any problems even if the short-circuited RPM is accidentally (or maliciously) distributed.
-- Aleksey Nogin
Home Page: http://nogin.org/ E-Mail: nogin@xxxxxxxxxxxxxx (office), aleksey@xxxxxxxxx (personal) Office: Jorgensen 70, tel: (626) 395-2907
