Mailinglist Archive: opensuse (4570 mails)
| < Previous | Next > |
Re: [opensuse] Re: warnings
- From: Patrick Shanahan <ptilopteri@xxxxxxxxx>
- Date: Mon, 7 Nov 2005 09:33:25 -0500
- Message-id: <20051107143325.GQ32036@xxxxxxxxxxxxxxx>
* mop48836 <mop48836@xxxxxxxxxxxxxxx> [11-07-05 09:15]:
> So, suppose that someone builds rpms with those directives (%deffatr,
> ...) with "common" user names, like "mike", "dave", etc.
> (not like "kosta", rather unusual..) with the purpose to compromise,
> "statistically", those machines?
>
> Would that be possible?
>
> If yes, wouldn't it be a severe security flaw?? i can't believe that!!
Which is why the _most_ rpm's are signed and their keys provided.
Please trim your quotes and refrain from top-posting. tks
http://www.netmeister.org/news/learn2quote.html
--
Patrick Shanahan Registered Linux User #207535
http://wahoo.no-ip.org @ http://counter.li.org
HOG # US1244711 Photo Album: http://wahoo.no-ip.org/gallery2
> So, suppose that someone builds rpms with those directives (%deffatr,
> ...) with "common" user names, like "mike", "dave", etc.
> (not like "kosta", rather unusual..) with the purpose to compromise,
> "statistically", those machines?
>
> Would that be possible?
>
> If yes, wouldn't it be a severe security flaw?? i can't believe that!!
Which is why the _most_ rpm's are signed and their keys provided.
Please trim your quotes and refrain from top-posting. tks
http://www.netmeister.org/news/learn2quote.html
--
Patrick Shanahan Registered Linux User #207535
http://wahoo.no-ip.org @ http://counter.li.org
HOG # US1244711 Photo Album: http://wahoo.no-ip.org/gallery2
| < Previous | Next > |