Why isn't Metasploit in Ubuntu's software repositories?
More broadly, on what basis is software chosen or not to be added to the official Ubuntu repositories? Who takes those decisions? etc.
There are really two questions here.
I'll answer the broader question first. The answer is "The Ubuntu Community".
There's a process for adding software to Ubuntu's archive and having it tested as part of the releases:
https://wiki.ubuntu.com/UbuntuDevelopment/NewPackages
To answer about metasploit, its hard to say why it hasn't been packaged yet. There is a debian "Intent To Package" bug filed that is 1607 days old here:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=323420
If this were ever completed, it would automatically be included in the Ubuntu universe repository. However, the bug report lists a blocker on the copyright status of some of the files. If this isn't resolved, then it won't enter Debian, and likely won't be included with Ubuntu unless the distribution legality is clarified.
No comments:
Post a Comment