Re: Bulk packages and security updates

To: John Klos <john%klos.com@localhost>
Subject: Re: Bulk packages and security updates
From: Greg Troxel <gdt%lexort.com@localhost>
Date: Tue, 08 Jul 2025 17:27:06 -0400

John Klos <john%klos.com@localhost> writes:

>> However, I think it's never ok to go deleting things because someone
>> things the vuln is super scary and that therefore they are deciding on
>> behalf of others than non-functional is better.  That would be like
>> audit-packages removing packages from people's machines, if they have a
>> vulnerability entry.
>
> Oh - I'd never presume to delete anyone else's and would leave that to
> others (builders, core, whomever).

Well, I meant even if you are providing a pbulk and the package is on
the ftp site, then it shouldn't get removed because of security
concerns.  At least that's my take on our norms, in that I have never
noticed it happening.

Follow-Ups:
- Re: Bulk packages and security updates
  - From: John Klos

References:
- Bulk packages and security updates
  - From: John Klos
- Re: Bulk packages and security updates
  - From: Greg Troxel
- Re: Bulk packages and security updates
  - From: John Klos
- Re: Bulk packages and security updates
  - From: Greg Troxel
- Re: Bulk packages and security updates
  - From: John Klos

Prev by Date: Re: Bulk packages and security updates
Next by Date: Re: Bulk packages and security updates
Previous by Thread: Re: Bulk packages and security updates
Next by Thread: Re: Bulk packages and security updates
Indexes:

Home | Main Index | Thread Index | Old Index