On Dec 7, 2007 3:30 PM, Scott Kitterman <email@example.com> wrote:
> On Friday 07 December 2007 16:17, Justin Dugger wrote:
> > On Dec 7, 2007 11:50 AM, John Dong <firstname.lastname@example.org> wrote:
> > > On Fri, Dec 07, 2007 at 10:33:57AM +0100, Gonz Hauser wrote:
> > > > Hi!
> > > >
> > > > I attached a patch to let the user install flash even if md5sums do not
> > > > match. This was the case when Adobe released their new version a few
> > > > days ago.
> > > >
> > > > Gonz
> > > I disagree with patches of this nature. We should not be implying a
> > > security checksum is something to feel good about when it passes and
> > > ignore when it doesn't.
> > >
> > Perhaps simply having a list of acceptable hashes would be okay?
> > Justin Dugger
> How would you know in advance what the md5sum was going to be?
> Scott K
You wouldn't. I was thinking this would make it easier to handle
multiple versions of the flash-player, but
I guess a smarter way would be to find a way to grab a specific
version and just update the link / md5
via -updates or -backports.
Ubuntu-motu mailing list
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-motu