[an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive]
 
[an error occurred while processing this directive] [an error occurred while processing this directive]
Skåne Sjælland Linux User Group - http://www.sslug.dk Home   Subscribe   Mail Archive   Forum   Calendar   Search
MhonArc Date: [Date Prev] [Date Index] [Date Next]   Thread: [Date Prev] [Thread Index] [Date Next]   MhonArc
 

Re: [MISC] Kan man stole på Debian dependencies?



On Fri, 08 Mar 2013 13:34:07 +0100
Peter Makholm <sslug@sslug> wrote:

> Donald J Axel <sslug@sslug> writes:
> 
> > OK, jeg havde set "why" i dpkg(8) men ikke prøvet den, det er jo
> > genialt - me er det ikke et sikkerhedshul at installere
> > smbclient, hvis man ikke bruger IFS/SMB/MS-netværk?
> 
> Jeg kan ikke se at smbclient på nogen måde skulle kunne øge
> risikoen for at den lokale maskine skulle blive kompromiteret.
> 
> Men hvis din maskine bliver kompromiteret ad anden vej er det
> selvfølgelig et ekstra værktøj som angriberen slipper for at
> installerer hvis vedkommende skulle have brug for en smb-client.
> 
> //Makholm

Det var selvf. ikke client, men de to andre "Samba" pakker:
samba-common{a} samba-common-bin{a} smbclient{a}

Jeg var for upræcis, smbclient er selvfølgelig ufarlig.
Men jeg tror ikke at vi behøver forlænge denne tråd. Jeg har
styr på hvad der skabte problemet oprindeligt, det meste af
det vidste jeg i forvejen, og jeg er ikke blevet klogere på,
om Debian dependencies tager sigte på en minimalistisk eller
en mere bloated installation.

Sagt på en anden måde, så kan jeg ikke se, om Debian dependcies
tree kan føje sig efter brugerens ønske uden at man får at vide (i
lettere fornærmede meddeleleser) at "så har du selv været ude om
det".

(Men for en sikkerheds skyld (pun intended) gentager jeg at Debian
Linux-distributionens pakkesystem og i det hele taget politikken
bag Debian er utrolig stabil og meget sympatisk.)
-- 
Donald Axel <sslug@sslug>


 
Home   Subscribe   Mail Archive   Index   Calendar   Search

 
 
Questions about the web-pages to <www_admin>. Last modified 2013-04-01, 02:01 CEST [an error occurred while processing this directive]
This page is maintained by [an error occurred while processing this directive]MHonArc [an error occurred while processing this directive] # [an error occurred while processing this directive] *