Hi folks,
Hello.
I am using fink for quite a long time now and I still think that it is one of the best things for Mac since Apple has introduced Mac OS X.
We tahnk you for that.
As secure as we all can make it.However, based on the increasing amount of worms and viruses which are out there (mainly for Windoze), I am wondering how secure fink is.
Of course we take great caution in what we allow into Fink and what we do not allow. I (we) are aware of a possible injection issue of false info files while using the Fink mirror system (finkmirrors.net). Of course one would have to hack one of the finkmirror.net provided mirrors first to be able to pollute the Tree, as well as other issues would have to be met, but still it is possible and we are working on a solution.
However, as it stands right now, Fink is pretty secure and the likelyhood thaty ou will infect or "destroy" your machine by using Fink are minimal.
<snip>
A general security policy for package maintainers is ready as XML in CVS. I will most likely activate it today or tomorrow, it will become mandatory for all maintainers. If you want to have a preview, you can take a peek here:What is fink's security policy for that?
http://cvs.sourceforge.net/viewcvs.py/fink/web/xml/security/sec-policy.en.xml?view=markup
This does not address end-user psecific questions yet, but it should show you how serious I (we) take these concerns.
-d
-------------------------------------------------------
This SF.Net email sponsored by Black Hat Briefings & Training.
Attend Black Hat Briefings & Training, Las Vegas July 24-29 - digital self defense, top technical experts, no vendor pitches, unmatched networking opportunities. Visit www.blackhat.com
_______________________________________________
Fink-users mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/fink-users
