Bugtraq mailing list archives
Pointless discussion (was Re: Installation of software, and security. . .)
From: "David F. Skoll" <dfs () roaringpenguin com>
Date: Tue, 19 Jul 2005 17:37:16 -0400
Matt Beaumont wrote:
Good idea in principle, but a malicious package will just arrange to tell J. Random User to run the install with whatever dangerous flags allow the malware to do its thing,
This whole discussion is entirely pointless. On modern systems, installing software is *by definition* highly dangerous, no matter what. If you let someone drop files in places of their choosing (or even with a few restrictions), you've basically agreed to give up control of your machine. Consider how many packages need to install startup scripts or cron jobs. And consider how those could be used to compromise a system. -- David.
Current thread:
- Installation of software, and security. . . John Richard Moser (Jul 16)
- Re: Installation of software, and security. . . Klaus Schwenk (Jul 18)
- Re: Installation of software, and security. . . John Richard Moser (Jul 18)
- Re: Installation of software, and security. . . Tim Nelson (Jul 19)
- Re: Installation of software, and security. . . Jason Coombs (Jul 19)
- RE: Installation of software, and security. . . Burton Strauss (Jul 20)
- Re: Installation of software, and security. . . John Richard Moser (Jul 20)
- Re: Installation of software, and security. . . John Richard Moser (Jul 18)
- Re: Installation of software, and security. . . Matt Beaumont (Jul 19)
- Pointless discussion (was Re: Installation of software, and security. . .) David F. Skoll (Jul 19)
- Re: Installation of software, and security. . . Klaus Schwenk (Jul 18)
- RE: Installation of software, and security. . . Burton Strauss (Jul 19)
- Re: Installation of software, and security. . . Peter Keel (Jul 20)
- Re: Installation of software, and security. . . Tino Wildenhain (Jul 19)
- Re: Installation of software, and security. . . Kerry Thompson (Jul 19)
- RE: Installation of software, and security. . . Burton Strauss (Jul 19)
- Re: Installation of software, and security. . . David F. Skoll (Jul 19)
- <Possible follow-ups>
- RE: Installation of software, and security. . . Glenn.Everhart (Jul 20)