[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#405997: should executables be permitted to update themselves?

On Sun, 14 Jan 2007 23:25:23 +0000, Neil McGovern <neilm@debian.org> said: 

> I'm not sure we'll be able to provide good security support if other
> random things are downloaded.

        Users can always download random things. They can download
 sources and compile them. They can install third party software in
 /opt or /usr/local, or, even (gasp) ~/.azereus/.

        Heck, they may even use vi and create their own security
 vulnerabilities in more ways than I can count.

        Saying that user actions may result in security issues and
 thus user choices must be taken away is not very convincing, no.

        manoj
-- 
"Whoever undertakes to set himself up as a judge of Truth and
Knowledge is shipwrecked by the laughter of the gods."-- Albert
Einstein
Manoj Srivastava <srivasta@debian.org> <http://www.debian.org/~srivasta/>
1024D/BF24424C print 4966 F272 D093 B493 410B  924B 21BA DABB BF24 424C
Reply to: