[buug] Gentoo, Bluecurve and Linux too!
Patrick Soltani
psoltani at ultradns.com
Fri Oct 18 11:32:29 PDT 2002
>
> I don't see the point in compiling by hand if you can have a
> package do
> it for you.
> _______________________________________________
>
How do you know the package give to you by the vendor is clean and not tampered with?
You are trusting the vendor to have given you a good binary, but simply you don't know.
With source, you'd know what is being compiled and built.
Although I saw a warning from SendMail folks that someone had tampered with the sendmail source, however, even this extreme event is caught very fast by folks that do diff of the old source and the new ones. Guess that's the main benefit of the compiling the source; apart from getting high on compiler/linker switches that scroll off of the screen! :-)
Regards,
Patrick Soltani.
More information about the buug
mailing list