Hi Aurelien, | On i386, pcp ships the upstream binary src/pmdas/mmv/mmvdump into | /var/lib/pcp/pmdas/mmv/mmvdump without rebuilding it. This violates | Debian policy and might be used by upstream to introduce backdoors or | other security issues.
What gives that impression? It seems to not be the case to me, there is clearly code, makefile and no binary in the source tar ball... $ tar tzf ~/SOURCES/pcp-3.9.2.src.tar.gz | grep mmvdump pcp-3.9.2/src/pmdas/mmv/mmvdump.c ? cheers. -- Nathan -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
