Ports tree insecure because of IGNOREFILES+IGNORE
Chris Nehren
cnehren at pobox.com
Sun Jun 22 12:40:51 UTC 2014
On Sunday, June 22, 2014 22:31:50 philj at openmailbox.org wrote:
> The IGNOREFILES+IGNORE mechanism allows port maintainers to
> disable checksum checks. I feel that this mechanism is a stain
> on an otherwise fantastic ports system. It reduces user
> confidence in security and makes us all sitting ducks for
> sophisticated adversaries.
Er. There's nothing stopping a port maintainer from saying
"Sorry, the distfiles aren't fetchable from the master sites any
more, I can host a copy" and then host a malicious distfile. Or
doing any number of simpler things to cause a problem. The
Project doesn't have the resources to audit every single
distfile's code. If you're that paranoid, you're welcome to do
so yourself.
--
Chris Nehren
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.freebsd.org/pipermail/freebsd-security/attachments/20140622/b50bd13a/attachment.sig>
More information about the freebsd-security
mailing list