On Dec 7, 2007 3:30 PM, Scott Kitterman <[EMAIL PROTECTED]> wrote: > On Friday 07 December 2007 16:17, Justin Dugger wrote: > > > On Dec 7, 2007 11:50 AM, John Dong <[EMAIL PROTECTED]> wrote: > > > > On Fri, Dec 07, 2007 at 10:33:57AM +0100, Gonz Hauser wrote: > > > > Hi! > > > > > > > > I attached a patch to let the user install flash even if md5sums do not > > > > match. This was the case when Adobe released their new version a few > > > > days ago. > > > > > > > > Gonz > > > > I disagree with patches of this nature. We should not be implying a > > > security checksum is something to feel good about when it passes and > > > ignore when it doesn't. > > > > > > Perhaps simply having a list of acceptable hashes would be okay? > > > > Justin Dugger > > > How would you know in advance what the md5sum was going to be? > > Scott K
You wouldn't. I was thinking this would make it easier to handle multiple versions of the flash-player, but I guess a smarter way would be to find a way to grab a specific version and just update the link / md5 via -updates or -backports. Justin D -- Ubuntu-motu mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-motu
