Pqluglist- [Gnome-Look "Social Engineering" exploit NOT just Ubuntu]
Parksville-Qualicum Linux Users group mail list
pqluglist at pqlug.org
Thu Dec 10 14:54:01 EST 2009
If possible please put your name at the bottom of your posts.
I have configured the list server to remove any e-mail addresses in the header
to help prevent spam so unless you sign your posts we don't know who sent it. If
you would like a direct reply to your e-mail address instead of to the list just
include it in your message but I do recommend that you use an anti-span
technique such as alfredpr AT pqlug DOT org or some such thing.
Thanks,
Alfred
> Hi, Roly...
>
> With all due respect, this is not an Ubuntu-specific issue and your comment borders on flame bait.
>
> Any system using debs for package maintenance could be subject to this specific exploit.
>
> Have you ever seen the Debian ports list? That's a lot of flavours. Only one of them is Ubuntu.
>
> If users consider a repo trusted and add the GPG keys to a keyring that just exacerbates the issue.
>
> Alien could even convert the debs to rpm if a user was really, really wanting the screensaver.
>
> Also, don't forget linux holds a significant market share in the server world and a lot of those servers have GUIs that might need screen savers.
>
> Not all admins are smart. Social engineering exploits are the tip of the iceberg.
>
> Welcome to the beginning of the end of being able to say "No virus here."
More information about the PQLUGlist
mailing list