3 Aug
2008
3 Aug
'08
12:24 a.m.
Ambroz wrote:
To me, a script that builds just every patch is a serious security flaw; I suppose it wouldn't be very hard for someone to send a naughty patch that would take control of your machine.
True.
I suggest you make it build patches in a chroot as a regular user, and copy over the chroot from a template every time a new patch is being built.
Sounds great. Want to implement that and send it my way? It'll take me a while to get the kinks worked out of the script, it'd be nice to have a hand with the chroot. - Dan