Pqluglist- [Gnome-Look "Social Engineering" exploit NOT just Ubuntu]

Parksville-Qualicum Linux Users group mail list pqluglist at pqlug.org
Thu Dec 10 20:23:30 EST 2009 

Parksville-Qualicum Linux Users group mail list wrote:
> To post to this list, send email to: pqluglist at pqlug.org
>
> To unsubscribe or change your options (eg, switch to or from digest 
> mode, etc.), go to: http://pqlug.org/mailman/options/pqluglist_pqlug.org
>
> or, via email, send a message with subject or body 'help' to: 
> PQLUGlist-request at pqlug.org
>
> List archives at: http://pqlug.org/pipermail/pqluglist_pqlug.org/
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of pqluglist digest..."
> ---------------------------------------
> ---------------------------------------
>
> If possible please put your name at the bottom of your posts.
>
> I have configured the list server to remove any e-mail addresses in 
> the header to help prevent spam so unless you sign your posts we don't 
> know who sent it. If you would like a direct reply to your e-mail 
> address instead of to the list just include it in your message but I 
> do recommend that you use an anti-span technique such as alfredpr AT 
> pqlug DOT org or some such thing.
>
> Thanks,
> Alfred
>
>
>> Hi, Roly...
>>
>> With all due respect, this is not an Ubuntu-specific issue and your 
>> comment borders on flame bait.
>>
>> Any system using debs for package maintenance could be subject to 
>> this specific exploit.
>> Have you ever seen the Debian ports list? That's a lot of flavours. 
>> Only one of them is Ubuntu.
>>
>> If users consider a repo trusted and add the GPG keys to a keyring 
>> that just exacerbates the issue.
>>
>> Alien could even convert the debs to rpm if a user was really, really 
>> wanting the screensaver.
>>
>> Also, don't forget linux holds a significant market share in the 
>> server world and a lot of those servers have GUIs that might need 
>> screen savers.
>>
>> Not all admins are smart. Social engineering exploits are the tip of 
>> the iceberg.
>> Welcome to the beginning of the end of being able to say "No virus 
>> here."
>
>
> _______________________________________________
> PQLUGlist mailing list
> PQLUGlist at pqlug.org
> http://mail.pqlug.org/mailman/listinfo/pqluglist_pqlug.org
> Visit our web site: http://www.pqlug.org
>
Yes, I'm afraid there are people out there just dying to get into our 
Linux computers, especially now that distros like Ubuntu have made using 
the system so easy. Hopefully we'll all be vigilant about what we download.

DonL

More information about the PQLUGlist mailing list