Re: [Christos Zoulas] CVS commit: src/usr.bin/ftp

To: Christos Zoulas <christos%zoulas.com@localhost>
Subject: Re: [Christos Zoulas] CVS commit: src/usr.bin/ftp
From: Emmanuel Dreyfus <manu%netbsd.org@localhost>
Date: Fri, 2 Sep 2022 18:05:58 +0000

On Fri, Sep 02, 2022 at 06:23:48PM +0300, Christos Zoulas wrote:
> I think we should be installing the anchors by default. I also think
> that people think that https gets validated by default.

Yes, this is long overdue. The current situation is vulnerable
by default to MiM attacks, like malware injection into downloaded
binaries. I feel bad each time I run pkg_add.

-- 
Emmanuel Dreyfus
manu%netbsd.org@localhost

References:
- [Christos Zoulas] CVS commit: src/usr.bin/ftp
  - From: Greg Troxel
- Re: [Christos Zoulas] CVS commit: src/usr.bin/ftp
  - From: Christos Zoulas

Prev by Date: Re: [Christos Zoulas] CVS commit: src/usr.bin/ftp
Next by Date: Re: [Christos Zoulas] CVS commit: src/usr.bin/ftp
Previous by Thread: Re: [Christos Zoulas] CVS commit: src/usr.bin/ftp
Next by Thread: Re: [Christos Zoulas] CVS commit: src/usr.bin/ftp
Indexes:

Home | Main Index | Thread Index | Old Index