> > How much malware is there on github? The only malware I'm aware of is the > stuff security companies throw up for scrutiny.
No idea. How much is too much if you get hit by, say some type of ransomware? http://thenextweb.com/insider/2013/02/07/criminals-push-ransomware-hosted-on-github-and-sourceforge-pages-by-spamming-fake-nude-pics-of-celebrities/#gref > I can understand licensing concerns but blocking github is rather silly IMO. > It's mostly viewed and not installed and only > sysadmins should be able to install software anyway, especially on mainframe > systems where there is far greater levels of security. Agreed only administrators should install software. Most malware only takes hold (at least in Windows) when running as an admin anyway. So, that would seem not a great control. In my experience the admins are as guilty of this as anyone - perhaps some over confidence. http://www.tomsguide.com/us/standard-accounts-stop-malware,news-18326.html I think it's a good idea, especially in a large company, but perhaps even small ones, to tightly control where the software comes from. Could be an innocuous email link on some admins email that uses github as the back end repository for a malware drop, for instance. Chad > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to [email protected] with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
