On 21/01/2008, Al Nikolov wrote: > In a case when upstream tarball contains some third party libraries > which are not used in favor to theirs packaged versions, what should > be done? > > 2b. All copyrights should be declared though the third party code is > not used in binary package (just because it is distributed in source > package).
(Don't do 2a., as pointed out by Baby already.) If you're going that way, you may want to notify the security team that you're embedding code copies, but that you aren't using them. Details: http://wiki.debian.org/EmbeddedCodeCopies Cheers, -- Cyril Brulebois
pgpp9PHzNeFFe.pgp
Description: PGP signature