[CentOS] EL 6 rollout strategies? (Scientific Linux)
Johnny Hughes
johnny at centos.org
Mon May 16 20:05:49 UTC 2011
On 05/16/2011 02:46 PM, Les Mikesell wrote:
> On 5/16/2011 1:43 PM, John R Pierce wrote:
>> On 05/16/11 11:24 AM, Les Mikesell wrote:
>>> it is somewhat unsettling to think that the
>>> project itself considers that to be a problem.
>>
>> consider what might happen if a core build server for a project as
>> widely used as centos gets penetrated and carefully targetted to slip
>> trojans unnoticed into the final product.... this woudl be a holy grail
>> to the sort of international espionage that is taking place today.
>>
>> be scared, be very scared.
>
> Yes, but assuming they eat their own dog food and are running the same
> thing we are, if their servers are penetrated, yours will too even
> before whatever they are building ships. And it is something that
> debian seems to be able to handle. In any case, with full automation it
> would be easy enough to duplicate the final build on a trusted server
> and compare the results before distribution. Or for someone else to do
> it to verify from an outside perspective.
>
There is not a server in the world that I could not break into if I was
on the same subnet ... and I am not even that smart.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 253 bytes
Desc: OpenPGP digital signature
URL: <http://lists.centos.org/pipermail/centos/attachments/20110516/560ee24c/attachment.sig>
More information about the CentOS
mailing list