Re: Study: Attacks on package managers (inclusing apt)

To: debian-security@lists.debian.org
Subject: Re: Study: Attacks on package managers (inclusing apt)
From: Michael Stone <mstone@debian.org>
Date: Thu, 17 Jul 2008 11:08:38 -0400
Message-id: <20080717150835.GJ2712@mathom.us>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <1216306014.31418.6.camel@localhost>
References: <1216306014.31418.6.camel@localhost>

On Thu, Jul 17, 2008 at 04:46:54PM +0200, Daniel Leidert wrote:

Today there were some news about a study from the University of Arizona
regarding security issues with package management systems (like apt). I
did not yet read the whole study, but probably it's interesting for the
project (they write about "vulnerabilities"). The study is here:

It doesn't appear that they had a firm grasp of how packagedistribution actually works in debian, at least. Mostly it seems likeoversensationalized attention-grabbing.


Mike Stone

Reply to:

Follow-Ups:
- Re: Study: Attacks on package managers (inclusing apt)
  - From: Micah Anderson <micah@riseup.net>

References:
- Study: Attacks on package managers (inclusing apt)
  - From: Daniel Leidert <daniel.leidert.spam@gmx.net>

Prev by Date: Study: Attacks on package managers (inclusing apt)
Next by Date: Re: Study: Attacks on package managers (inclusing apt)
Previous by thread: Study: Attacks on package managers (inclusing apt)
Next by thread: Re: Study: Attacks on package managers (inclusing apt)
Index(es):
- Date
- Thread