|
|
|
|
|
|
by jordigh
4159 days ago
|
|
|
> This applies to pretty much every pkg manager ever created. This seems a bit more dangerous... to do this with apt, you need to MITM, since the Debian repos are ultimately checked by ftpmasters to make sure (amongst other things) that packages like rimrafall don't get in. Apt also has mitigations against MITM, as described elsewhere in this thread. Who's checking what packages make it into npm? How did rimrafall get accepted as a package? |
|
|