Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

The fact that they are customizing the software is not really the issue. The issue is that they are making a change that will remove significant functionality and in some cases completely lock some users out of their password database, which is a huge deal. Imagine if you wake up tomorrow, run a software update and then can't log in to your bank?

I imagine the reason this has blown up so much is that the maintainer never reached out to the upstream about this, and was rude and condescending when upstream reached out to them.



> Imagine if you wake up tomorrow, run a software update and then can't log in to your bank

Oh, the horror of being in unstable/testing channel and ignoring the change notice which has been shown automatically during apt-get upgrade.


The snark here is unnecessary and completely disconnected from how people use these systems in the real world.

Deferring to “it’s in the notes!” means nothing if you have more than a handful of packages on your machine.

You should also clarify the assertion that packaging affecting testing target won’t eventually hit stable, because that would be a major change that I haven’t heard about.

An end user will get impacted by this eventually.


> “it’s in the notes!”

Your words, not mine.

It isn't buried somewhere, it's in NEWS.Debian file, and it's shown to user during the package update by default.


Are you sure it was shown? I didn’t see one on Sid.


It's in NEWS.debian file [0], so apt-listchanges (which is installed by default in standard installation) should've shown it.

[0] https://salsa.debian.org/debian/keepassxc/-/blob/main/debian...




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: