This is the mail archive of the
cygwin
mailing list for the Cygwin project.
Re: hacked package on server
- From: Thorsten Kampe <thorsten at thorstenkampe dot de>
- To: cygwin at cygwin dot com
- Date: Mon, 16 Jul 2007 18:04:16 +0100
- Subject: Re: hacked package on server
- References: <469B9A27.3090406@cs.wisc.edu>
* Louis Kruger (Mon, 16 Jul 2007 11:17:43 -0500)
> > On Mon, Jul 16, 2007 at 10:30:52AM -0500, Louis Kruger wrote:
> > > I also have a complaint: the dialog that notifies the user of the failed
> > > MD5 is not well designed. The dialog asks "Do you want to skip the
> > > package?" and has a yes and no button. I read it quickly and pressed no
> > > before thinking about it, the package went ahead and tried to install. I
> > > think there should be a little more effort to restrain the user from
> > > performing a dangerous action such as installing a package with a wrong MD5.
> >
> > Good point. The message should probably be
> >
> > Do you want to not skip the package (No/Yes)?
>
> I realize you are joking, but the wording of the message is beside the
> point.
That's a valid point as "skipping" already contains a negation meaning
"not installing".
Something like "Do you still want to install the package (although it
might have been tampered with)? If unsure choose "No". [Yes/No]" -
with a default of "No" would make definitely more sense.
Thorsten
--
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
Problem reports: http://cygwin.com/problems.html
Documentation: http://cygwin.com/docs.html
FAQ: http://cygwin.com/faq/