Am Mi, den 07.01.2004 schrieb Andy Green um 14:47: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 [ snip ] > > Should we just do like Lindows and run everything as root? We might just > > as well. > > My point is that every time you install an RPM or do make install you are > giving externally sourced scripts root access to your machine, which is the > equivalent of make or make install as root. Yet for Fedora people, > installing an RPM is much more common than making source. Right, installing RPM needs root and can damage your system. But to be able to install software on your system easily by just using RPM does not, in no way imply to take every package you can get and install it. Well, it seems to be common in the Windows[tm] world to click on every .exe or what else is executeble and try to use it, no matter by what source it comes from. In my eyes this behaviour is kind of stupid. Doing so in the Linux world - speaking here for Fedora - doing so with RPMs on Fedora is as foolish in my opinion. So better only take only RPMs from serious sources. The Fedora repository has qualitiy management. Signed packages can be traced back and people can be blamed for building bad packages. A general strategy for RPM handling maybe should be: do nothing your employer will fire you for if you do it at work. > - -Andy > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.2.3 (GNU/Linux) > > iD8DBQE//A4DjKeDCxMJCTIRAhnIAJ90fgluvtGRqZpnnmq15AK+qa+POQCdFWyK > hI8jZ+Jqt5KPtx9ITJ2/4xc= > =Cxvb > -----END PGP SIGNATURE----- Alexander Why do a dog lick his balls? Because he is able to do! :) -- Alexander Dalloz | Enger, Germany PGP key valid: made 13.07.1999 PGP fingerprint: 2307 88FD 2D41 038E 7416 14CD E197 6E88 ED69 5653