Gerhard Froehlich wrote:
>
> Stefano Mazzocchi wrote:
>
> <skip/>
>
> > No, not remote code, but packages downloaded from remote locations (like
> > anybody has always been doing!).
> >
> > Think about it: you have apt-get, red-hat rpm updating, ximian
> > red-carpet, FreeBSD ports, Windows Update, Ecplise update manager, JEdit
> > plugins... just to name a few.
> >
> > I don't think nobody will ever mess with a production environment, but
> > during development, one might want to update the blocks used to the
> > latest bugfix releases, or even decide to use another implementation
> > (here is where polymorphism kicks in) of the block used before, because
> > it has, say, better performance or implements new features.
> >
> > Blocks will not only make it easier to deploy stuff on a production
> > environment, but also on development.
>
> Hmmm do we want to provide some security, like server/client
> certificates to sign the blocks?
>
> So that it is guaranteed that the blocks come from trusted servers and
> the components are allowed to use the local Cocoon Kernel services
> (Filesystem, Database, ...).
>
> Just a random thought.
Yes, I thought about it but I was considering this to be an
implementation detail (in fact, the java JAR infrastructure already
allows package signing)
--
Stefano Mazzocchi One must still have chaos in oneself to be
able to give birth to a dancing star.
<[EMAIL PROTECTED]> Friedrich Nietzsche
--------------------------------------------------------------------
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, email: [EMAIL PROTECTED]
