Web lists-archives.com

Re: .deb packages and security




Anil Duggirala wrote:
> hello,
> I know installing .deb packages downloaded from websites is not a good
> practice in terms of software management in Debian. I would like to
> know if I should have security concerns when installing a .deb package
> "manually" (using gdebi for example) ?

Do you trust the provider of the *deb package?  If so, you should be
fine.  If you want to take it a step farther, see if there's a (sha256)
checksum for the package.

> Is it possible that by downloading the skype .deb package and
> installing it, I am creating a security vulnerability in a Debian
> system?

Well, Skype is a Microsoft product ... :)


-- 
|_|O|_| Registered Linux user #585947
|_|_|O| Github: https://github.com/dpurgert
|O|O|O| PGP: 05CA 9A50 3F2E 1335 4DC5  4AEE 8E11 DDF3 1279 A281