Trying out the packaging script myself, I found that after it did the GPG work, I got a sudo prompt. Being the paranoid sort, I stopped right there. Of course, I took a look and it isn't doing anything sneaky, but it also isn't doing anything that should really require root access.
Ideally it would be nice if the app used fakeroot instead of sudo to do the little bits it needed, or at least recognized if it was already running within fakeroot and skipped both the "root is dangerous" warning and the attempted usage of sudo.
Log in to post a comment.