LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Greasemonkey gets into trouble

Greasemonkey gets into trouble

Posted Jul 28, 2005 9:35 UTC (Thu) by sdalley (subscriber, #18550)
Parent article: Greasemonkey gets into trouble

"Users should take caution for any extensions they download, and to authenticate the source of the extension."
Hmm. Some distributions don't exactly make this easier. Every time I use the default Synaptic package update on my Ubuntu 2005.4 installation, it displays the dire warning "You are about to install software that can't be authenticated" for ALL the out-of-date packages, including those in the core ubuntu and the latest Firefox update. Most of us would be prepared to trust core packages more than multiverse etc, why cry wolf for all of them? TThis will only result in users becoming inured to the warning when it might actually matter.

(Log in to post comments)

Greasemonkey gets into trouble

Posted Jul 29, 2005 7:35 UTC (Fri) by nedrichards (guest, #23295) [Link]

If you import the GPG key of those repositories then the warning will go away. Plus you'll be a lot more sure that you aren't subject to a man in the middle attack on your packages. Whilst I agree that the UI of synaptic could be altered to make this much more obvious and easy the theory behind it is still good.

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds