[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH] package.el: check tarball signature

From: Stephen J. Turnbull
Subject: Re: [PATCH] package.el: check tarball signature
Date: Sun, 06 Oct 2013 00:07:53 +0900

Ted Zlatanov writes:
 > On Sat, 05 Oct 2013 14:40:46 +0900 "Stephen J. Turnbull" <address@hidden> 
 > wrote: 

 > SJT> Still, the whole idea worries me; there's no reason to suppose
 > SJT> it will increase security, and Ted never has seemed to grasp
 > SJT> that security is not a SMOP, nor that security is inherently
 > SJT> inconvenient.
 > I find that mildly offensive.

I'm sorry you do.  It's not something that can be phrased without
risking offense, though.

 > My work will be open for review before it goes in.  I suggest you
 > criticize the work, not me

You miss the point (and trimmed the relevant footnote, to boot).  I am
not qualified to criticize the C-level programming, because I assume
there are some subtle issues in handling crypto beyond using strncat
instead of strcat.

Therefore, I'm in a position where I have to delegate the work to you.
That being so, and being unable to verify that you can dive like a
duck, I'd at least like to hear you quack like one.

 > or my motivations.

Where did I criticize your motivations?  I'd like to correct my words
if I gave that impression.  I certainly didn't intend that.

reply via email to

[Prev in Thread] Current Thread [Next in Thread]