RedHat forks OpenSSH?

Dan Kaminsky dan at doxpara.com
Tue Nov 9 14:06:47 EST 2004


>Impolite in the fact they take a clean tar ball physically remove code
>from it instead of using the native RPM patch methology.  Thus you have an
>unsignable and unverifiable *.tar.gz file within the srpm.
>  
>
The point is that they can't ship SRPM's with ACSS, built or not.  
Negative patches still contain the offending code, even as they say 
"don't built this".

--Dan




More information about the openssh-unix-dev mailing list