Received: from makus.postgresql.org (makus.postgresql.org [98.129.198.125])
	by mail.postgresql.org (Postfix) with ESMTP id BE00516FA500
	for <pgsql-www@postgresql.org>; Mon,  9 Jul 2012 08:24:48 -0300 (ADT)
Received: from mail-lb0-f174.google.com ([209.85.217.174])
	by makus.postgresql.org with esmtp (Exim 4.72)
	(envelope-from <magnus@hagander.net>) id 1SoC58-0007ci-7w
	for pgsql-www@postgresql.org; Mon, 09 Jul 2012 11:24:48 +0000
Received: by lbbgm6 with SMTP id gm6so19918007lbb.19
	for <pgsql-www@postgresql.org>; Mon, 09 Jul 2012 04:24:32 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
	d=google.com; s=20120113;
	h=mime-version:in-reply-to:references:date:message-id:subject:from:to
	:cc:content-type:x-gm-message-state;
	bh=QBMruLqd7DFPXrrCMA3LFaW3cwXaJ/ANbbL7x6W/sUk=;
	b=Wj3C6Z27ch+a0BzWyBm1qgIiCWv96VZQZn7ZQwb12AUTSS3UzI3R5bJun+3v+Fhddh
	0VraR6C6vYFkwqhJwYBkV8TziRfpZU5iQJBonyBYQ3zwwVsSi7gYCJ9/EDXVAWUGhi/h
	4QqzI9VPL1X6/icmJGnsGBMfaEviVZ7yTL8tYGfJdHCdO5ZIL3K9bWestUHopdSDBlyX
	wFuQctMTXlvFLBm7tF5NPsMv188IgIZOaE2X01b3tl947WSXVcxO9ugJdUPii6yrclqF
	cegGXMoLLtIknOxlNj7baOZtrLeKxDvUPNd6mxuXGTS09FYTLev03oKEm9E/2osrmgbh
	Hdpg==
MIME-Version: 1.0
Received: by 10.112.45.168 with SMTP id o8mr17953006lbm.88.1341833072192; Mon,
	09 Jul 2012 04:24:32 -0700 (PDT)
Received: by 10.152.21.234 with HTTP; Mon, 9 Jul 2012 04:24:32 -0700 (PDT)
In-Reply-To: 
 <CA+OCxoxxW3EOoLpWuTk=GW2Hr-Z+8m0_oN2QUQCMpVss6R+DDw@mail.gmail.com>
References: 
 <CAKq0gvKgeckkBa0xm6xsrmNvk=Cm6zPP4n1O3CQCvDUvCYCs8w@mail.gmail.com>
	<CABUevEyONmEeqwU4VJgs8vTV3yW3dsNLPiFfPnAKJOCLgYbvYA@mail.gmail.com>
	<CAKq0gvL-s4_Mk0ztGh+yywH5v4Jvnm2Fs2k-gq2wcrW+kfY2xQ@mail.gmail.com>
	<1341692590.1122.1.camel@lenovo01-laptop03.gunduz.org>
	<2476F91B-A1B2-45DA-96EB-8F33C79A0E05@openscg.com>
	<1341781012.3451.0.camel@lenovo01-laptop03.gunduz.org>
	<CA+OCxoxExqHx_ZNRpvmJpVoNCOa9yO4C3HTZ4Ob7e32Wn2+fcQ@mail.gmail.com>
	<CABUevEzm09To=uzW=+F==G98HK2YZNXsXwv+NW-7uOgqGLOxoQ@mail.gmail.com>
	<CA+OCxox1pCaXvOeVmv0gECbXsOqGeXQL-O2QsyWmFS9ZvCkjbg@mail.gmail.com>
	<CABUevEx_7-Xm+z5oc+61TuHzSbu34fWAKiRxAXjGwfCzff=OZA@mail.gmail.com>
	<CA+OCxoyGPVRQ+1tnxGuFS1JACr1QJUchS90qxXHuN_YTUNj8QA@mail.gmail.com>
	<CA+U5nMK86koEcfkBwUWRPqGTT1b8Qjp3hN=pk3to+kqaUoWp=w@mail.gmail.com>
	<CA+OCxoxxW3EOoLpWuTk=GW2Hr-Z+8m0_oN2QUQCMpVss6R+DDw@mail.gmail.com>
Date: Mon, 9 Jul 2012 13:24:32 +0200
Message-ID: 
 <CABUevEwmukkXui9fPDqyQwG62cWbwepURwK4GVvAkCqWNeecGQ@mail.gmail.com>
Subject: Re: Linux Downloads page change
From: Magnus Hagander <magnus@hagander.net>
To: Dave Page <dpage@pgadmin.org>
Cc: Simon Riggs <simon@2ndquadrant.com>,
	=?ISO-8859-1?Q?Devrim_G=DCND=DCZ?= <devrim@gunduz.org>,
	Scott Mead <scottm@openscg.com>,
	"pgsql-www@postgresql.org" <pgsql-www@postgresql.org>
Content-Type: text/plain; charset=ISO-8859-1
X-Gm-Message-State: 
 ALoCoQk67tdq87+W5RjgE0gTWNB9N4njLylQuncnttX9Xuf3wPqZNs62HR4WaGX0UFKplBGYvVAh
X-Pg-Spam-Score: -2.6 (--)
X-Archive-Number: 201207/49
X-Sequence-Number: 20798

On Mon, Jul 9, 2012 at 1:21 PM, Dave Page <dpage@pgadmin.org> wrote:
> On Mon, Jul 9, 2012 at 12:19 PM, Simon Riggs <simon@2ndquadrant.com> wrote:
>> On 9 July 2012 10:44, Dave Page <dpage@pgadmin.org> wrote:
>>
>>> It gets pushed periodically when I remember to do it (or someone
>>> reminds me), which I guess you've forgotten given that we've had this
>>> exact same discussion before.
>>
>> That highlights a key flaw.
>>
>> If we distribute RPMs then the SRPMs should exactly match. If they
>> don't, that's a pretty serious set of bugs we're introducing.
>>
>> Can I suggest that the process be changed? Push the SRPM code, then
>> generate RPMs from the released SRPM code. That way there is no
>> opportunity to forget anything. This is a substantial security
>> concern, not just a forgotten task.
>>
>> Perhaps it would be useful to have a "build farm" that builds the RPMs
>> from SRPMs automatically, then we will have no need for manually
>> updating the RPMs at all. (And I mean build all binaries from publicly
>> available build scripts).
>
> We're not talking about RPMs here.

FWIW, the RPMs already do this, I believe.

-- 
 Magnus Hagander
 Me: http://www.hagander.net/
 Work: http://www.redpill-linpro.com/