| 14 Aug 2022 |
 FestplattenSchnitzel | In reply to @_oftc_Licaon_Kter[xmpp]:matrix.org
I've never used the azure instance since they were reorganized and only one was left. I've sticked with OSLU (spelling?) (It's Oregon State University Open Source Laboratory, so OSUOSL.) | 07:22:51 |
![@_oftc_Licaon_Kter[xmpp]:matrix.org](./avatar/Licaon_Kter%5Bxmpp%5D) Licaon_Kter[xmpp] | Whatever :)) | 07:45:54 |
|  kempe1 left the room. | 14:13:34 |
| kempe1 joined the room. | 14:24:12 |
| 29 Sep 2022 |
 jochensp | ..a malicious signature is fine than we should not block it in the fdroid nightly build | 14:12:44 |
| jochensp | that's exactly my point with that fdroidserver should be data agnostic | 14:13:16 |
| Licaon_Kter[xmpp] | > scan_binary is false by default | 14:13:54 |
| Licaon_Kter[xmpp] | For now... | 14:13:54 |
 michael | fdroidserver has not been data agnosic for the last 10 years | 14:14:10 |
| jochensp | yes, and I think that's something we need to change | 14:14:31 |
| michael | at least the fdroid scanner part | 14:14:34 |
| michael | no | 14:14:38 |
| jochensp | (don't get me wrong, I'm all for disallowing all those blobs but only for fdroiddata not for everyone using it) | 14:14:58 |
| Licaon_Kter[xmpp] | What's with the () jochensp ? | 14:15:40 |
| jochensp | (that's a meta comment ;) ) | 14:16:18 |
| Licaon_Kter[xmpp] | Pfft | 14:16:43 |
| jochensp | I think tooling (= fdroidserver) is good if it enables you to do things, not if it restricts you | 14:17:35 |
| jochensp | for example moving the category definitions from fdroidclient to fdroiddata allows other repos to define their one categories, like Izzy did | 14:18:14 |
| michael | nobody is disputing that ... | 14:19:09 |
| michael | this is about defaults for me, not about restrictions | 14:19:29 |
| michael | the defaults should be fdroids policies | 14:19:36 |
| jochensp | yes, but we should define policies in data not in the tools | 14:20:00 |
| jochensp | if we encode them in our tools, we enforce those policies upon everyone | 14:21:12 |
| jochensp | so people will not use them or find ways around | 14:21:29 |
| jochensp | to give an example with Debian: all tooling is agnostic to what data you package, if you download stuff from the internet or just shovel existing binaries into the .deb | 14:22:36 |
| michael | I'm not sure what you're suggesting. Shipping fdroid scan without default data? | 14:22:48 |
| jochensp | but the Debian project has clear policies on all of them | 14:22:49 |
| jochensp | yes | 14:22:55 |
| michael | data in the sense of scanner signatures | 14:22:59 |
 linsui | In reply to @uniq:matrix.org
Yes, e.g. when used used for nightly builds The fdroiddata are not designed to be used as that. E.g. you still need those srclibs... | 14:23:40 |
