[Mageia-dev] Removal of sun java

Thu Mar 29 22:59:16 CEST 2012

On Thu, Mar 29, 2012 at 21:23, Maarten Vanraes <alien at rmail.be> wrote:
+
+> Op donderdag 29 maart 2012 21:08:22 schreef David Walser:
+> > Guillaume Rousse <guillomovitch at ...> writes:
+> > > If I want to keep a proprietary JRE on my computers, because I trust it
+> > > more to run crap proprietary applications (also called
+> > > corporate-compliants), than marvelous free-licensed environment they
+> > > have never been tested with, that is my choice, not yours.
+> >
+> > If they really want to keep Sun Java, shouldn't they just download the
+> > installer from Sun and install it themselves, rather than using some
+> > obsolete Mageia 1 package of it?
+>
+>
+> well, iinm the version that the people have, will still have the correct
+> license and we are able to distribute it fine.
+>
+> i would argue that if security bugs we could remove it, but i'm not too
+> sure
+> on this point... i mean, can we really remove it from them? otoh, people
+> wanting to have the proprietary ones, likely know what they are doing...
+>
+
+http://www.h-online.com/open/news/item/Critical-Java-hole-being-exploited-on-a-large-scale-Update-1485681.html
+
+If people want it they should install the fixed version that we are not
+allowed to distribute
+
+perhaps we can obsolete it with one of those nonfree getters? (if security
+> bug)
+>
+> or, maybe a package that gives an README.urpmi ...
+>
+> IMHO: i think obsoleting it is fine, but with a README.urpmi that says
+> notifies
+> that it's been obsoleted.
+>
+
+Yes that seems the best solution to me
+
+
+> (unless someone wants to have and maintain a nonfree getter application
+> that
+> fetches the upstream releases)
+>
+> we really shouldn't keep stuff we can't maintain...
+>
+-------------- next part --------------
+An HTML attachment was scrubbed...
+URL: </pipermail/mageia-dev/attachments/20120329/9a904863/attachment.html>
+