rsyncing signed tarballs (Re: [79599] trunk/base)

Joshua Root jmr at macports.org
Mon Jun 20 03:55:40 PDT 2011


On 2011-6-20 09:25 , Ryan Schmidt wrote:
> 
> On Jun 19, 2011, at 16:18, jmr at macports.org wrote:
> 
>> Revision: 79599
>>          http://trac.macports.org/changeset/79599
>> Author:   jmr at macports.org
>> Date:     2011-06-19 14:18:18 -0700 (Sun, 19 Jun 2011)
>> Log Message:
>> -----------
>> make sync and selfupdate via signed tarballs the default
> 
> So we're still rsyncing, but now we're rsyncing a tarball instead of individual files? Could you discuss this change a little? (Motivation, benefits...)

I'm pretty sure we discussed the lack of integrity checking for base and
dports previously. The signature is the whole point of the exercise; the
tarball is just because a detached signature for a single file was
easiest to implement.

- Josh


More information about the macports-dev mailing list