Re: ssl security desaster

To: debian-devel@lists.debian.org
Subject: Re: ssl security desaster
From: Martin Uecker <muecker@gmx.de>
Date: Mon, 19 May 2008 03:10:31 +0200
Message-id: <[🔎] 20080519011031.GA27305@bluestein>
Mail-followup-to: Martin Uecker <muecker@gmx.de>, debian-devel@lists.debian.org
In-reply-to: <[🔎] 87ve1dm4w6.fsf@xoog.err.no>

Tollef Fog Heen wrote:
> * Martin Uecker 

[...]

> | There was a thread "building packages with exact binary matches"
> | about it. Unfortunately, most people seem to think that this is not
> | worth it.
>
> I don't think that's unfortunate; I think it's a waste of resources
> better spent elsewhere.

If somebody hacks into a DD's machine, the obvious thing for an attacker 
to do is to trojan a Debian package. I wonder how long it would take 
to find out... Maybe it did already happen, who knows?

> | > I believe that postinsts need the flexibility shell (or perl or
> | > python or whatever) gives them.  If you want to restrict postinsts
> | > to only be able to do a limited set of operations, the quality of
> | > packages will detoriate quite a bit as they are no longer flexible
> | > enough to cater for all packages's needs.

In fact, I think the opposite would be the case: The quality of Debian
would rise, because there would be the need to establish standard
interfaces for all reasonable cases where packages have to mess
with the system during installation. Compare this with running windows
applications without system privileges. You could argue as above,
that the quality of those programs will detoriate, because applications
are no longer flexible to cater for all applications's need. So
where is the difference?

Martin

Reply to:

References:
- Re: ssl security desaster
  - From: Tollef Fog Heen <tfheen@err.no>

Prev by Date: Re: Mailing lsit code of conduct, again
Next by Date: Re: Mailing lsit code of conduct, again
Previous by thread: Re: ssl security desaster
Next by thread: Re: ssl security desaster (was: Re: SSH keys: DSA vs RSA)
Index(es):
- Date
- Thread