Richard W.M. Jones (rjones@xxxxxxxxxx) said: > On Wed, May 29, 2013 at 06:39:56PM -0400, Paul Wouters wrote: > > On Tue, 28 May 2013, Petr Pisar wrote: > > >I've corrected license declaration at sharutils package: > > > > Why do we even bother shipping an old obsoleted [.....] > > ... and I thought you were talking about sharutils :-) > > Should we really distribute shar/unshar? It's been known at least > 20 years that these programs are horribly unsafe. > > (Note that 'sharutils' also contains uuencode/uudecode which are > rather more useful). There are 20 or so packages that buildrequire sharutils; they would all need audited to see what parts they're actually using. Bill -- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel
