Richmond wrote:
> Jeffrey Walton <noloa...@gmail.com> writes:
>
> Yes the updates should be tested at every stage. Maybe people think that
> they cannot stop updates, but they can use Group Policy to stop Windows
> Update. Or maybe they are afraid if they don't allow virus updates then
> they will allow a virus?
This wasn't Windows Update. This is more akin to Firefox's
Mozilla-owned self-updating.
Are we sufficiently far away from Debian now?
The relevant bits for Debian:
- when you give root privileges to someone, they own your
computer
- software updates that run as root (including Debian updates)
can run anything else as root
- insiders and organizations you hire need to be part of your
security assessment
- intentional and unintentional acts can do the same amount of
damage
-dsr-
-dsr-
