[development] RFC: letting modules phone home to check for new releases
Darren Oh
darrenoh at sidepotsinternational.com
Wed Nov 22 23:33:19 UTC 2006
On Nov 22, 2006, at 5:04 PM, Darrel O'Pry wrote:
> write perms to modules directory from drupal as web server user is
> really hard for me to swallow....
>
> any package managers like script should be run from the command
> line as
> a privileged user. should do it's set job and be bullet proof.
Let's not forget that very few users use the command line to work
with Drupal. Let's also not make unnecessary assumptions about how an
automated module install or upgrade would work. The security issues
will be worked out if people share more ideas for how it can be done
than for how it can't be done.
Oswald was asking to collaborate. The negative reactions give the
impression that some people would rather work on their own. Not very
open source. Am I missing some history here?
More information about the development
mailing list