"Mark Ramm" <[EMAIL PROTECTED]> writes: > You're willing to apt-get -- which requires sudo ;) -- a package > from some random (though I'm sure trustworthy) guy off of the > Internet, but not to trust the packages from TurboGears.org...
Yeah, hehe :-) The difference is that the Debian package has been prepared on a Debian system and someone has tried to install it (and hopefully tried to uninstall it too) on a Debian system. So I hope that this someone has gone through the trouble of making the package fit together with the rest of the Debian system. And hey, look, it has been tried by at least four people now... :-) http://qa.debian.org/developer.php?popcon=turbogears My point is that the official packages could have been prepared on a system using Red Hat, SuSE or some other random system... > If it were in the debian repository already, and had had at least a > bit of review from a debian maintainer (or one of the Ubuntu > universe guys) I'd trust it more. But for now, I think easy-install > and the packages on TurboGears.org are equally safe -- perhaps > safer. ('cause I trust Kevin, and the other TurboGears developers to > keep a close eye on these things.) If they use Debian themselves then it's no problem since they would discover and fix any incompatibilities, but if Debian is something peripheral to them, then I would rather get my packages from a guy who runs Debian full-time. -- Martin Geisler --- <[EMAIL PROTECTED]> --- http://mgeisler.net Read, write, create Exif data in PHP with PEL: http://pel.sf.net Take control of your webserver with PHP Shell: http://phpshell.sf.net
pgph0o1lXxBZ1.pgp
Description: PGP signature
