|
|
|
|
|
|
by raesene5
4155 days ago
|
|
|
I'm not OP, but my opinion would be that APT does do some things better than npm etc but there's still some potential problems. Probably one of the most obvious is that access to the repos is over unencrypted HTTP connections which opens the process up to tampering (depending on the attacker) for example injecting an older version of a package with a known security issue. |
|
|
There's a limited window during which an attack like this will work. If you look at one of the Release files [1], you'll notice the pseudo-header:
After this date passes, aptitude update will fail, warning you that your sources are out of date, with a message like: Of course, the Release file is signed, so you can't just forge that pseudo-header (or change any of the packages in the release).You could also choose one of the mirrors that supports HTTPS, like mirrors.kernel.org or mirrors.ocf.berkeley.edu (both good for Bay Area folks).
(Granted, the window is probably larger than we'd like, though you could write a script to check that if you wanted. Something like [2] would work.)
[1] http://mirrors.ocf.berkeley.edu/debian-security/dists/wheezy... [2] https://github.com/ocf/puppet/blob/master/modules/ocf_mirror...