On 3/6/22 13:39, Demi Marie Obenour wrote:
I have also strongly disliked deltarpms. They very rarely help and significantly increase attack surface.
If deltarpm succeeds and both the old .rpm and the new.rpm are signed, then how is the attack surface larger, as long as any consumer verifies the signature? _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
