[linux-elitists] Comprehensive list of Linux malware

Etienne Goyer etienne.goyer@videotron.ca
Sat Nov 20 08:05:26 PST 2004

Mike MacCana wrote:
> - Executable files not used to package software
> Legitamite software is supplied as a package file that  only needs to be 
> read by an existing, trusted executable installation app (ie, up2date, 
> apt-get).

Considering package install script can do pretty much anything, and are 
usually runned as root, this is a purely academic advantage.  The trust 
associated with signed package is a plus, but not a panacea either.

More information about the linux-elitists mailing list