SEO
vBulletin Search Engine Optimization
| |||||||
| Register | FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
02-22-2008, 12:27 PM
| ||||
| ||||
 Re: system auto security update over night On Tue, May 16, 2006 at 10:16:36AM +0000, Steffen Wendzel wrote: > : It would also be a great way to create all sorts of horrible stuff. > : Discounting patches that actually change program behaviour, you are > : aware that neither DNS, HTTP or FTP is secure, where the last two are > : particularly insecure if the first is controlled? (I.e. ftp.openbsd.org > : could point anywhere.) > > Downloading patches manualy via browser creates the same problems. It > would make no difference. Only if you don't verify the patches after download. There *is* a problem here in downloading the install sets [1], for instance; but patches are usually small enough that they can be manually verified. Joachim [1] Only on install, though, as anoncvs over ssh can be used to verify them post-install.      |
Linear Mode
