From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <cygwin-return-205438-listarch-cygwin=sourceware.org@cygwin.com>
Received: (qmail 12819 invoked by alias); 9 Oct 2016 06:56:37 -0000
Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm
Precedence: bulk
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe@cygwin.com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin@cygwin.com>
List-Help: <mailto:cygwin-help@cygwin.com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner@cygwin.com
Mail-Followup-To: cygwin@cygwin.com
Received: (qmail 12807 invoked by uid 89); 9 Oct 2016 06:56:36 -0000
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=-0.3 required=5.0 tests=BAYES_40,RP_MATCHES_RCVD autolearn=ham version=3.3.2 spammy=soderquist, Soderquist, accused, H*f:sk:CACoZoo
X-HELO: Ishtar.sc.tlinx.org
Received: from ishtar.tlinx.org (HELO Ishtar.sc.tlinx.org) (173.164.175.65) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with ESMTP; Sun, 09 Oct 2016 06:56:35 +0000
Received: from [192.168.3.12] (Athenae [192.168.3.12])	by Ishtar.sc.tlinx.org (8.14.7/8.14.4/SuSE Linux 0.8) with ESMTP id u996jH2x048370	for <cygwin@cygwin.com>; Sat, 8 Oct 2016 23:45:19 -0700
Message-ID: <57F9EA0E.4000209@tlinx.org>
Date: Sun, 09 Oct 2016 08:55:00 -0000
From: Linda Walsh <cygwin@tlinx.org>
User-Agent: Thunderbird
MIME-Version: 1.0
To: cygwin@cygwin.com
Subject: Re: intelligent following of directions, or following them by rote...
References: <CAGHJv4cPr2Pe31nBg+KZ1nbODGtb977NOxOHgXyd89xEY2uh0g@mail.gmail.com> <878tu1qtes.fsf@Rainer.invalid> <57F6966E.4050303@tlinx.org> <874m4pqp27.fsf@Rainer.invalid> <57F6E725.9090001@tlinx.org> <892577849.20161007133108@yandex.ru> <57F81BD9.8090502@tlinx.org> <CACoZoo1mEr8mLKDCy=9TkVQaYRQWY5wmhdZqn8-4+G9dzjcmvQ@mail.gmail.com>
In-Reply-To: <CACoZoo1mEr8mLKDCy=9TkVQaYRQWY5wmhdZqn8-4+G9dzjcmvQ@mail.gmail.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
X-IsSubscribed: yes
X-SW-Source: 2016-10/txt/msg00105.txt.bz2

Erik Soderquist wrote:
> On Fri, Oct 7, 2016 at 6:04 PM, Linda Walsh wrote:
>>         As for package maintainers needing some specific behavior --
>> if a backdoor to your system was part of the "base" system, would you
> 
> If there is a "back door" in a base package, that is a security
> failing and needs to be reported and fixed
---
	I think you miss the point -- the point would be whether or
not you believe you "need" to install and use it "as is", or if consider
that maybe you want a different, "fixed" version?  Whether you fix it 
or someone else does often depends on turn-around time and ease of 
user building, but I think you answer the question -- you'd
take action to replace the code *rather* than living with it.

	Hey, I never accused, directly or obliquely, you of not using
your head...  ;-)

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple