On Tue, 8 Jun 2004, Jerome Lacoste wrote: > On Tue, 2004-06-08 at 10:11, Maczka Michal wrote: > > you can use: > > > > maven.repo.remote=http://repo1,http://repo2,file://repo3,http://www.ibiblio. > > org/maven > > Let me add that by precaution, you should probably always have a local repository > around containing all your projects dependencies. > I heard people say you shouldn't, but: > - you may lose your connection > - you may need to build from a place where you don't have a connection > - it's always good to not be dependent on somebody else when you have to build some > sotware.
That's definitely my philosophy here; my sysadmins also add one more reason to that list, and it is - downloading unverified JARs from an Internet website and putting them blindly in your software is a bad idea I must admit that I share their concern; I'm curious to know whether the security implications of this have been discussed at all. - Julian -- Julian C. Dunn <[EMAIL PROTECTED]> <[EMAIL PROTECTED]> Software Developer, CBC.ca Production & Operations Office: 2C310-I * Tel.: (416)-205-5592 PGP Key: 0xDA6A5B30 [7DCD A0C3 8B6F 6A76 F4CD 9F9B F941 A1B2 DA6A 5B30] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
