Re: when will we finally throw away binary uploads (Re: Please upgrade your build environment when you are affected by transition

To: debian developers <debian-devel@lists.debian.org>
Subject: Re: when will we finally throw away binary uploads (Re: Please upgrade your build environment when you are affected by transition
From: Brian May <brian@microcomaustralia.com.au>
Date: Fri, 14 Feb 2014 11:15:19 +1100
Message-id: <[🔎] CAA0ZO6ASVimCV-0zk9iV6h-8pW1MVVr_KLwieS=UuQpnzUu-mQ@mail.gmail.com>
In-reply-to: <[🔎] 20140213184653.GA5700@jwilk.net>
References: <[🔎] 1392295131.23481.82943513.2A8023E7@webmail.messagingengine.com> <[🔎] 201402131713.36134.holger@layer-acht.org> <[🔎] CAFggDF1iGi23FAhWHsSWhSAcE1XSVViWNOb+i5n+SkYH4bq3_A@mail.gmail.com> <[🔎] 20140213184653.GA5700@jwilk.net>

On 14 February 2014 05:46, Jakub Wilk <jwilk@debian.org> wrote:

How many uploaded binaries might include malware?

*shrug* It's not like it's difficult to hide malicious code in source packages.

After the damage is done, probably easier to find the malware that did it if you can rely on the source code being an accurate representation of what was running (not that this would be any easy task).

--
Brian May <brian@microcomaustralia.com.au>

Reply to:

Follow-Ups:
- Re: when will we finally throw away binary uploads (Re: Please upgrade your build environment when you are affected by transition
  - From: Kevin Chadwick <ma1l1ists@yahoo.co.uk>

References:
- Please upgrade your build environment when you are affected by transition
  - From: Ondřej Surý <ondrej@sury.org>
- when will we finally throw away binary uploads (Re: Please upgrade your build environment when you are affected by transition
  - From: Holger Levsen <holger@layer-acht.org>
- Re: when will we finally throw away binary uploads (Re: Please upgrade your build environment when you are affected by transition
  - From: Jacob Appelbaum <jacob@appelbaum.net>
- Re: when will we finally throw away binary uploads (Re: Please upgrade your build environment when you are affected by transition
  - From: Jakub Wilk <jwilk@debian.org>

Prev by Date: Re: when will we finally throw away binary uploads (Re: Please upgrade your build environment when you are affected by transition
Next by Date: Re: when will we finally throw away binary uploads (Re: Please upgrade your build environment when you are affected by transition
Previous by thread: Re: when will we finally throw away binary uploads (Re: Please upgrade your build environment when you are affected by transition
Next by thread: Re: when will we finally throw away binary uploads (Re: Please upgrade your build environment when you are affected by transition
Index(es):
- Date
- Thread