Date: Tue, 17 Feb 2004 14:09:06 +0100 From: des@des.no (Dag-Erling =?iso-8859-1?q?Sm=F8rgrav?=) To: Michael Nottebrock <michaelnottebrock@gmx.net> Cc: Kris Kennaway <kris@obsecurity.org> Subject: Re: cvs commit: ports/devel/tmake Makefile distinfo Message-ID: <xzpr7wtn98t.fsf@dwp.des.no> In-Reply-To: <200402171404.30701.michaelnottebrock@gmx.net> (Michael Nottebrock's message of "Tue, 17 Feb 2004 14:04:23 %2B0100") References: <200402091336.i19Da8nQ019809@repoman.freebsd.org> <20040209220732.GA22475@xor.obsecurity.org> <20040217124914.GA16805@xor.obsecurity.org> <200402171404.30701.michaelnottebrock@gmx.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Michael Nottebrock <michaelnottebrock@gmx.net> writes: > On Tuesday 17 February 2004 13:49, Kris Kennaway wrote: > > On Mon, Feb 09, 2004 at 02:07:32PM -0800, Kris Kennaway wrote: > > > On Mon, Feb 09, 2004 at 05:36:08AM -0800, Michael Nottebrock wrote: > > > > Log: > > > > Fix distinfo, SIZEify. > > > You forgot to summarize what changed. > > I didn't see a followup to this. > I have no idea what you expect me to write. When the checksum of a distfile changes, there is a considerable risk that someone may have trojaned the distfile. As a port maintainer, you are exptected to verify that this is not the case before updating the checksum in distinfo. You are also expected to summarize the reason for the changed checksum in the commit message so that The Rest Of Us[tm] can rest assured that you have indeed verified that the distfile was not trojaned. DES --=20 Dag-Erling Sm=F8rgrav - des@des.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?xzpr7wtn98t.fsf>