At 7:46 PM +0100 3/18/01, Markus Holmberg wrote:
>Isn't there a small security advantage with building from source
>(compared to downloading packages from an untrusted party)?
Access to the source code (and even a close examination of it) isn't
enough. See Ken Thompson's Turing Award lecture, "Reflections on
Trusting Trust": http://cm.bell-labs.com/who/ken/trust.html
-r
--
http://www.cfcl.com/rdm - home page, resume, etc.
http://www.cfcl.com/Meta/md_fb.html - The FreeBSD Browser
email: [EMAIL PROTECTED]; phone: +1 650-873-7841
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-stable" in the body of the message
