Hi 14.04.2015 05:20, Ralf Corsepius пишет: > On 04/14/2015 03:01 AM, Elder Marco wrote: > >> Ralf, plowshare is a command-line downloader/uploader for some of the >> most popular file-sharing websites. Each module (written in bash) >> corresponds to a different sharing site. The modules are downloaded via >> plowmod, from a oficial repository provided by upstream. > Well, as I said before, I do not like packages, which are doing so. > > I consider them to be a security and data privacy risk, but I am not > in a position to change upstreams nor users. > > My advise to users: Don't use such packages if you are concerned about > your data and your installations' security. > If package provide some basic modules and also utilities for user to manage update "channels" or repo in clean way, why not? As was mentioned early many software do the same. Although we do not ship any external yum repos in rpm there clear way for users how to add others. And it may be much more security breach. So, in my mind plowshare just must clearly state what it doing and provide described way to control such process for user (see and manage repos added, enabled/disabled and so on). Off course that should be installed somewhere under user $HOME... > Ralf > -- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
