Re: sandboxing,of upstream programs by distros
Open Source Security
Posted by Matthew Fernandez on Oct 14
I deliberately did not name it to avoid getting into a discussion like
this. The short answer is that we’re doing our best but the history of
the project includes 10+ year old bugs that no one has had the time or
resources to address. “fix all the bugs” simply is not a strategy that
survives contact with the real world.
Sure, but you’re answering a different question than the one I asked.