Hey Peter,
The other alternative to just trust you or distrust you is the
availability of the src.rpm package which will clarify for those who
knows how to look at them, how secure are these packages.
Eliezer
On 08/02/2015 04:19, Peter wrote:
Please note that these packages are not endorsed by Weitse Venema, or
anyone associated in any official capacity with Postfix. He doesn't
know me from a bar of soap and it's up to you to decide if you trust me
enough to install packages that I provide. When you install rpm
packages on your system the install scripts have full root access to
your system. They can install backdoors and other malware, mess with
security contexts, and do all sorts of other mean and nasty things. I
don't do that sort of thing with my packages, but again, it's up to you
whether you trust my word in this.
Thanks,
Peter Ajamian
