Bug#579028: pbuilder: installs untrusted packages without asking

Thorsten Glaser tg at debian.org
Fri Mar 9 10:01:17 UTC 2012 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA384

Junichi Uekawa dixit:

>I don't share the opinion that this should be a grave bug to change
>the default, and in order to change the default you need to deprecate
>a command-line option and introduce two new command-line options when
>you could have just changed the default shipping pbuilderrc.
>
>> To still allow untrusted/unsigned repositories - they are a very
>> bad idea and allow remote attackers performing a MITM to take
>> over the system, including all built packages - the new option
>> - --allow-untrusted (ALLOWUNTRUSTED) was added.
>
>I don't care what you think is a bad idea.

Allowing installation of untrusted packages anywhere on the system,
even in a chroot, is a security issue. In something people use to
build packages for the archive it i̲s̲ grave.

I really was surprised, no, shocked to read that cowbuilder disables
Secure APT by default and would very much like to see that changed,
yes, the default, globally.

bye,
//mirabilos (with hats “Debian Developer” and “m68k buildd” on)
- -- 
  "Using Lynx is like wearing a really good pair of shades: cuts out
   the glare and harmful UV (ultra-vanity), and you feel so-o-o COOL."
                                         -- Henry Nelson, March 1999
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MirBSD)
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=3ge2
-----END PGP SIGNATURE-----

More information about the Pbuilder-maint mailing list