[FFmpeg-devel] FYI: wine patchbot software
Måns Rullgård
mans
Fri Jun 5 17:05:42 CEST 2009
Martin Lindhe <martin at startwars.org> writes:
> M?ns Rullg?rd wrote:
>> Martin Lindhe <martin at startwars.org> writes:
>>
>>> Hello, I just wanted to let you all know that the Wine project has
>>> prodcued a "patch bot" software.
>>>
>>> The concept is simple:
>>>
>>> * A script pulls patches sent to wine devel list, applies to TRUNK,
>>> compiles & perform regression tests
>>
>> That is security suicide. What if someone sends a patch that makes it
>> do something really nasty?
>>
>
> wine "solves" that by running it inside a VM but you got a point
> there
A VM is a start, but you'd still need to carefully audit any
communication from the VM to the outside world, or it could be turned
into a spambot or similar.
--
M?ns Rullg?rd
mans at mansr.com
More information about the ffmpeg-devel
mailing list