Re: PGP verifyable Squid code

From: Steven Sporen <[email protected]>
Date: Tue, 9 Jun 1998 09:31:56 +0002

> On Mon, 8 Jun 1998, Alex Rousskov wrote:
>
> > > But, how can you trust the real Squid anyway?
> >
> > Huh?
>
> Well, if you're going to be paranoid about middle-man attacks, why not be
> paranoid about the squid authors grabbing your /etc/passwd and sending it
> off to the squid authors?
>
> Ok, it's a bit far-fetched, but it is a good habit to browse through the
> sources to look for anything strange, as well as looking at any patches
> that you add in to your squid source tree.
>
> Isn't that one of the main points of why open-source software is so good?

If you're so worried then go and spend some money :)

Cheers
  Steve

www.elab.co.za | webmaster@elab.co.za
Received on Tue Jun 09 1998 - 00:33:22 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:40:39 MST