On Wed, Dec 04, 2002 at 09:59:42AM +0800, csj wrote: > I remember reading somewhere that it would be easier to trojan > programs by simply having the requested download redirected to a > malicious server (by fooling around with the DNS stuff).
for the concern i previously mentioned, you're probably right. however,
it would be nice to have the ability to limit what packages you could
download from a sources.list entry, if that's the specific reason you
put that entry in in the first place (i.e. i don't care what else metalab
has on their site, i only want blackdown java from them), wouldn't it?
sean
msg16993/pgp00000.pgp
Description: PGP signature
