Re: How secure is the openSUSE Build Service?

Aniruddha was asking which is safer. There is a difference between 3rd
party repositories and official repositories. If you do not trust the
distribution's official repositories your alternative would be Linux
from Scratch and individually checking source tarballs.

On 11/6/07, Thomas <tom@xxxxxxxxxxxxxxxxxx> wrote:
Only if you assume *every* upstream developer is honest and/or trust the
integrity of the Debian/Gentoo/FreeBSD servers... Hello rsync! ;-)

Am Freitag 02 November 2007 schrieb Eduardo Tongson:
Correct.

Does this mean that a distro that doesn't require 3rd party repositories
(Debian/Gentoo/FreeBSD) is safer?





Relevant Pages

  • Re: How secure is the openSUSE Build Service?
    ... party repositories and official repositories. ... In the case of OSS it doesn't matter ... When you trust several thousands developers around the globe, ... dozens of distribution then *one* additional layer in the distribution ...
    (Focus-Linux)
  • Re: How secure is the openSUSE Build Service?
    ... party repositories and official repositories. ... In the case of OSS it doesn't matter ... When you trust several thousands developers around the globe, ... that Alice really is Alice. ...
    (Focus-Linux)
  • Re: xserver-xorg-core update breaks X
    ... repositories is the same software that's installed on your machine ... That's quite possible, Vincent! ... "I trust the Democrats to take away my money, ... trust the Republicans to take away my freedom, ...
    (Ubuntu)