On Thu, 20 Jun 2013 08:43:06 +0200 Slavko <[email protected]> wrote: > Hi, > > > On 6/20/13, Greg <[email protected]> wrote: > > Does anyone think that debian could participate in any programs like > > PRISM? Or could a lone (or group of) sympathetic DD or DM slip a > > backdoor or something that could collect private info in the binary > > packages distributed by debian? > > Sure, here is something, that collect info and send it to the Debian - > the popoularity contest... (yes, i see the differences) > > Anybody can do anything - then yes, it is possible, that someone from > DD/DM can integrate something bad into some package. It is possible, > that backdoor is implemented by upstream author/contributor too, and > it is possible, that backdoor is in Linux kernel too. > > But how long it will be in Debian? Because most of binaries in Debian > are provided with they sources, anybody can take look into it and then > anybody can find and report, that something is wrong ;-) >
http://c2.com/cgi/wiki?TheKenThompsonHack -- Joe -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: http://lists.debian.org/[email protected]
