Date: Wed, 13 Feb 2013 08:16:48 -0500 From: Eitan Adler <eadler@freebsd.org> To: wen heping <wenheping@gmail.com> Cc: Wen Heping <wen@freebsd.org>, svn-ports-head@freebsd.org, svn-ports-all@freebsd.org, ports-committers@freebsd.org Subject: Re: svn commit: r311118 - head/www/moodle22 Message-ID: <CAF6rxgm0Exd3pHr3UKca34KD5-zt1fXoV-BS_c036c9sZEiteQ@mail.gmail.com> In-Reply-To: <CACi771-cNuGOH8HVmLJB1TFf9Ggb2pnFdv%2B2YpVn2xP8KeO8cQ@mail.gmail.com> References: <201301281348.r0SDmu46086859@svn.freebsd.org> <CAF6rxgkpyFWkSkHU_u1=NX-6bUpQWzkpSqmQqxJrZjzUGcZd5A@mail.gmail.com> <CACi771-cNuGOH8HVmLJB1TFf9Ggb2pnFdv%2B2YpVn2xP8KeO8cQ@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 13 February 2013 00:57, wen heping <wenheping@gmail.com> wrote: > I do not know what changed upstream, but i make md5 check. it is the > same as upstream now. This is not usually sufficient. The goal is to protect users from being affected by issues like http://lists.horde.org/archives/announce/2012/000751.html where the upstream tarball is maliciously manipulated. -- Eitan Adler Source, Ports, Doc committer Bugmeister, Ports Security teams
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAF6rxgm0Exd3pHr3UKca34KD5-zt1fXoV-BS_c036c9sZEiteQ>