[FFmpeg-devel] FYI: wine patchbot software

[Måns Rullgård]

Martin Lindhe <martin at startwars.org> writes:

> M?ns Rullg?rd wrote:
>> Martin Lindhe <martin at startwars.org> writes:
>> 
>>> Hello, I just wanted to let you all know that the Wine project has
>>> prodcued a "patch bot" software.
>>>
>>> The concept is simple:
>>>
>>> * A script pulls patches sent to wine devel list, applies to TRUNK,
>>> compiles & perform regression tests
>> 
>> That is security suicide.  What if someone sends a patch that makes it
>> do something really nasty?
>> 
>
> wine "solves" that by running it inside a VM but you got a point
> there

A VM is a start, but you'd still need to carefully audit any
communication from the VM to the outside world, or it could be turned
into a spambot or similar.

-- 
M?ns Rullg?rd
mans at mansr.com