[development] RFC: letting modules phone home to check for new releases

Darren Oh darrenoh at sidepotsinternational.com
Wed Nov 22 23:33:19 UTC 2006


On Nov 22, 2006, at 5:04 PM, Darrel O'Pry wrote:

> write perms to modules directory from drupal as web server user is
> really hard for me to swallow....
>
> any package managers like script should be run from the command  
> line as
> a privileged user. should do it's set job and be bullet proof.

Let's not forget that very few users use the command line to work  
with Drupal. Let's also not make unnecessary assumptions about how an  
automated module install or upgrade would work. The security issues  
will be worked out if people share more ideas for how it can be done  
than for how it can't be done.

Oswald was asking to collaborate. The negative reactions give the  
impression that some people would rather work on their own. Not very  
open source. Am I missing some history here?


More information about the development mailing list