Re: Building packages with exact binary matches

linux.debian.devel

Re: Building packages with exact binary matches

Subject:	Re: Building packages with exact binary matches
From:	Don Armstrong <don@xxxxxxxxxx>
Date:	Fri, 28 Sep 2007 18:10:17 +0200
Newsgroups:	linux.debian.devel

On Fri, 28 Sep 2007, Martin Uecker wrote:
> You are seriously stating that is as easy to hide a trojan in the
> source code as in the binary?

Consider the fact that we've already had such a case,[1] whereas we've
not (to my knowledge) distributed a trojaned binary. I'm not sure
which is easier to hide, but it seems that making a source trojan is
at least more frequent if not easier to create.

Don Armstrong
1: mICQ anyone? http://lists.debian.org/debian-devel/2003/02/msg00872.html
-- 
[A] theory is falsifiable [(and therefore scientific) only] if the
class of its potential falsifiers is not empty.
 -- Sir Karl Popper _The Logic of Scientific Discovery_ §21

http://www.donarmstrong.com              http://rzlab.ucr.edu

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Building packages with exact binary matches, (continued) Re: Building packages with exact binary matches, Martin Uecker Re: Building packages with exact binary matches, Manoj Srivastava Re: Building packages with exact binary matches, Martin Uecker Re: Building packages with exact binary matches, Ben Finney Re: Building packages with exact binary matches, Manoj Srivastava Re: Building packages with exact binary matches, Martin Uecker Re: Building packages with exact binary matches, Manoj Srivastava Re: Building packages with exact binary matches, Martin Uecker Re: Building packages with exact binary matches, Manoj Srivastava Re: Building packages with exact binary matches, Martin Uecker Re: Building packages with exact binary matches, Don Armstrong <= Re: Building packages with exact binary matches, Martin Uecker Re: Building packages with exact binary matches, Roberto C. Sánchez Re: Building packages with exact binary matches, Manoj Srivastava Re: Building packages with exact binary matches, Martin Uecker Re: Building packages with exact binary matches, Benjamin A'Lee Re: Building packages with exact binary matches, Martin Uecker Re: Building packages with exact binary matches, Ben Finney Re: Building packages with exact binary matches, Clint Adams Re: Building packages with exact binary matches, Manoj Srivastava Re: Building packages with exact binary matches, Russ Allbery

Previous by Date:	Re: Packaging a library that requires cross-compiled code, Julien BLACHE
Next by Date:	Re: Packaging a library that requires cross-compiled code, David Anderson
Previous by Thread:	Re: Building packages with exact binary matches, Martin Uecker
Next by Thread:	Re: Building packages with exact binary matches, Martin Uecker
Indexes:	[Date] [Thread] [Top] [All Lists]