On 5/03/2016 12:37 AM, Bigendian Smalls wrote:
>It's a bit disconcerting that github is being blocked because IBM (and the
company I work for) are using github to ship code and add-ons for our products.
All the new Liberty server goodies from IBM are staged in github repositories.
>I don't understand why a company would block a site that hosts source code
repositories. Has there been a major security issue browsing github that
compromises clients?
>
Companies are restricting sites where people can download and then presumably
install software. Obviously there are many small sites that allow this, but
GitHub and some others are huge and only provide this service. So they are low
hanging fruit.
Unauthorized installing of software is a huge malware installation vector and
it can also have licensing issues for the company. So usually it's a no no at
bigger companies.
How much malware is there on github? The only malware I'm aware of is
the stuff security companies throw up for scrutiny. I can understand
licensing concerns but blocking github is rather silly IMO. It's mostly
viewed and not installed and only
sysadmins should be able to install software anyway, especially on
mainframe systems where there is far greater levels of security.
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
