Page 3 of 3 FirstFirst 123
Results 21 to 23 of 23

Thread: what happens with a faked repository

  1. #21
    Join Date
    Nov 2009
    Beans
    919
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: what happens with a faked repository

    Correct, you won't get malicious, unsigned packages to install without being warned first. But moving a level up (or down if you're really nerdy) when folks advise against doing anything sensitive or critical on a network outside your own control, I would think package management or software installation would be considered one of those things anyway.

  2. #22
    Join Date
    Sep 2011
    Location
    Pennsylvania, U.S.A.
    Beans
    1,833
    Distro
    Ubuntu Development Release

    Re: what happens with a faked repository

    I did what SeijiSensei recommended. I changed my repository to a university nearby though mainly to reduce the load on Ubuntu's servers and data pipes. It sure seems like there are quite a few safeguards to circumvent or defeat to be able to create a functional fake repository.

  3. #23
    Join Date
    Jan 2008
    Location
    Nappanee, IN
    Beans
    602
    Distro
    Xubuntu 12.04 Precise Pangolin

    Re: what happens with a faked repository

    Functional & fake repository still would depend on user not paying attention. That is one of the major differences between Windows and Linux. The only exploits which got through Linux's basic controls are those which use social engineering and get by, usually, new users only.
    Last edited by cwsnyder; November 11th, 2012 at 09:40 PM.

Page 3 of 3 FirstFirst 123

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •