On 26 October 2014 15:05, Mikel Artetxe <[email protected]> wrote: > 2) Cryptographically sign the bytecode and verify this signature every time > that we load it. Probably not too hard to implement, but we would have to > take care of the infrastructure involved, which is not trivial (e.g. who > would keep the private key? only people with it could publish or update > language pairs, but we could not make it public either as potential > attackers would then have access to it).
A phone or tablet fits the definition of "user product"[1] in the GPL3, so you would be required (section 6) to also provide the keys used to sign the binaries for packages covered by the GPL3. [1] 'a “consumer product”, which means any tangible personal property which is normally used for personal, family, or household purposes' -- <Sefam> Are any of the mentors around? <jimregan> yes, they're the ones trolling you ------------------------------------------------------------------------------ _______________________________________________ Apertium-stuff mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/apertium-stuff
