zeroinstall-injector
Thomas Leonard
talex5 at gmail.com
Wed Jan 10 20:42:26 GMT 2007
On Wed, 10 Jan 2007 20:15:08 +0100, Dennis Kaarsemaker wrote:
> On wo, 2007-01-10 at 18:59 +0000, Thomas Leonard wrote:
>
>> In other words, Zero Install isn't a complete security system, but
>> it's a necessary part of a solution.
>
> imho it's not a solution at all. We work with source and can include
> things in the repositories. I don't think Ubuntu should go and make
> non-opensource programs easier to install.
I agree, Ubuntu shouldn't be making non-opensource programs easier
to install.
However, bringing the discussion back to Zero Install, here are some
screenshots of a Zero Install user compiling a ROX applet from source:
http://rox.sourceforge.net/desktop/node/360
Note the 'Publish' button in the compile window. Not only do we let users
modify the source, we let them redistribute it too. Yes, even
"unauthorised" users.
Binary packages created this way automatically include information about
the upstream sources used (versions, where to get them, digests) and a
patch file, if the user made any changes. So, you should be able to
recreate a build reliably if you want to modify it further.
(it's possible to remove these, of course, just as you can create a
binary-only .deb, but it's open by default)
--
Dr Thomas Leonard http://rox.sourceforge.net
GPG: 9242 9807 C985 3C07 44A6 8B9A AE07 8280 59A5 3CC1
More information about the Ubuntu-motu
mailing list