Re: counter-PRISM PRISM - Re: wacky question
On Thu, 20 Jun 2013 08:43:06 +0200
Slavko <linux@slavino.sk> wrote:
> Hi,
>
> > On 6/20/13, Greg <greg451@att.net> wrote:
> > Does anyone think that debian could participate in any programs like
> > PRISM? Or could a lone (or group of) sympathetic DD or DM slip a
> > backdoor or something that could collect private info in the binary
> > packages distributed by debian?
>
> Sure, here is something, that collect info and send it to the Debian -
> the popoularity contest... (yes, i see the differences)
>
> Anybody can do anything - then yes, it is possible, that someone from
> DD/DM can integrate something bad into some package. It is possible,
> that backdoor is implemented by upstream author/contributor too, and
> it is possible, that backdoor is in Linux kernel too.
>
> But how long it will be in Debian? Because most of binaries in Debian
> are provided with they sources, anybody can take look into it and then
> anybody can find and report, that something is wrong ;-)
>
http://c2.com/cgi/wiki?TheKenThompsonHack
--
Joe
Reply to: