Re: question about the security of entries in sources.list

To: <debian-user@lists.debian.org>
Subject: Re: question about the security of entries in sources.list
From: csj <csj@mindgate.net>
Date: Wed, 04 Dec 2002 09:59:42 +0800
Message-id: <[🔎] 878yz6y25t.wl@alpha>
In-reply-to: <[🔎] 20021203163006.A6727@sccs.swarthmore.edu>
References: <20021128023730.A10117@sccs.swarthmore.edu> <[🔎] 20021203205657.GA16769@fishbowl.madduck.net>

On Tue, 3 Dec 2002 16:30:06 -0500,
sean finney wrote:

[...]

> while i'm not as concerned with servers like ftp.us.debian.org
> being compromised (though it is a concern to the pessimist),
> i'd like to make sure that the extra sources.list entries i've
> put in for other things (like, say blackdown) don't do more
> than for what i've put them in.  is there any way to limit what
> packages could be downloaded from what sites?

I remember reading somewhere that it would be easier to trojan
programs by simply having the requested download redirected to a
malicious server (by fooling around with the DNS stuff).

Reply to:

Follow-Ups:
- Re: question about the security of entries in sources.list
  - From: sean finney <seanius@seanius.net>

References:
- Re: question about the security of entries in sources.list
  - From: martin f krafft <madduck@debian.org>
- Re: question about the security of entries in sources.list
  - From: sean finney <seanius@seanius.net>

Prev by Date: Boot from HD
Next by Date: Re: Graphics & Linux
Previous by thread: Re: question about the security of entries in sources.list
Next by thread: Re: question about the security of entries in sources.list
Index(es):
- Date
- Thread