If you "sudo make install" a compiled binary from spoofed git repository, your botnet masters will thank you!
________________________________________ From: discuss-gnuradio-bounces+sean.nowlan=gtri.gatech....@gnu.org [discuss-gnuradio-bounces+sean.nowlan=gtri.gatech....@gnu.org] on behalf of Michael Ossmann [m...@ossmann.com] Sent: Tuesday, July 30, 2013 11:52 AM To: M Dammer Cc: discuss-gnuradio@gnu.org Subject: Re: [Discuss-gnuradio] Suggestion: Avoid using https in Pybombs recipes On Tue, Jul 30, 2013 at 11:57:09AM +0100, M Dammer wrote: > > This may lower security, but as the software we are working with is > opensource anyway I do not see the need for encryption. There have been attacks against users of open source software via automated software update and installation methods. My two cents: fix certificate validation instead of dropping https. _______________________________________________ Discuss-gnuradio mailing list Discuss-gnuradio@gnu.org https://lists.gnu.org/mailman/listinfo/discuss-gnuradio _______________________________________________ Discuss-gnuradio mailing list Discuss-gnuradio@gnu.org https://lists.gnu.org/mailman/listinfo/discuss-gnuradio
