security of the universe repository

Patrick Asselman iceblink at seti.nl
Thu Dec 20 08:21:44 UTC 2012 

On 2012-12-18 15:01, Amichai Rotman wrote:
>
> On Tue, Dec 18, 2012 at 2:45 PM, Tom H <tomh0665 at gmail.com> wrote:
>
>> On Tue, Dec 18, 2012 [1] at 12:57 AM, Chandra Amarasingham
>> <camarasingham at yahoo.com> wrote:
>> >
>> > I am wondering if there is an "official" word on the security of 
>> the
>> > universe repository compared to the Main repository. By security I 
>> mean free
>> > from malicious code.
>> >
>> > I don't think there are anti-virus programs in the Main 
>> repository, but I
>> > think clam anti-virus is in the universe repository.....but that 
>> means I am
>> > not able to be confident that the clam anti-virus itself does have 
>> malicious
>> > aspects (eg. from other sources...).
>> >
>> > I thought it would be nice to have some scanning software in the 
>> main
>> > repository which can be used to scan software from other 
>> repositories which
>> > don't enjoy the same level of confidence.
>>
>> Why would the universe/multiverse repositories be insecure? They're
>> packages rebuilt from Debian just like those in main/restricted.
>>
>> --
> I think the OP is referring to the fact the Universe / Multiverse
> repositories are not supported directly by Canonical, but by the
> community. So the OP, being a long time Windows user, I guess, 
> assumes
> it is potentially open to malicious code...
>
>
> Chandra: No need to worry!
>
> Although Linux viruses exist, they pose very little threat to your
> Ubuntu. On the other hand, if you use the same computer with Windows,
> and download files from the Internet, make sure to scan them 
> regularly
> with an updated Anti Virus. You can safely install ClamAV + ClamTk
> (it's graphical front-end) and use it to scan your Windows partition
> from within Ubuntu.
>
> The fact that the  Universe / Multiverse repositories are not
> supported by Canonical just means you have to seek the community's
> help and support for the applications you installed from them, and 
> not
> contact Canonical.
>
> I hope I was helpful and didn't confused you even further ;-)
>

If malicious code enters the repositories, you DO need to worry, A LOT!
Viruses in the big bad world get stopped by firewalls, scanners, and 
the built-in unix file permissions.
If a repo is infected (depending on the software it is in) it can have 
root access to start with, so it can do anything it wants. If you are 
lucky it will totally feck up your system so you will notice straight 
away. If you are not so lucky, it will silently gather data without you 
knowing.

Mind you, the chance of repo's being infected and noone noticing is 
small.

Best regards,
Patrick Asselman

More information about the ubuntu-users mailing list