[guardian-dev] Whats better than antivirus? Whitelisting!
Hans-Christoph Steiner
hans at guardianproject.info
Wed Apr 17 14:10:36 EDT 2013
Sorry, it wasn't meant to be trolling, but just to mark that when you use the
default repositories, you can trust that 'apt-get install' is not installing
malware.
You could configure a package whitelist for apt by package name in
/etc/apt/apt.conf.d. It would be a rather large and perhaps difficult to
manage list of packages if it was centrally managed. It could work on a local
level by taking a snapshot of the current system as the whitelist to start with.
.hc
On 04/17/2013 02:06 PM, Cooper Quintin wrote:
> Also, apparently hans was trolling me about a package called
> 'notmalware' *whoosh*
>
> Cooper Quintin
> Technology Director
> radicalDESIGNS
> (O) 415-738-0456 (C) 510 827 5382
> 1201 Martin Luther King Jr. Blvd, Oakland, CA
> PGP Key ID: 75FB 9347 FA4B 22A0 5068 080B D0EA 7B6F F0AF E2CA
>
> On 04/17/2013 11:04 AM, Cooper Quintin wrote:
>> Sorry forgot to include the link,
>> http://linuxgizmos.com/kernel-level-app-whitelisting-for-android-devices/
>>
>> notmalware seems like an interesting idea, I would prefer something that
>> works more like the way droidwall used to work though. Specifically
>> letting you pick which packages you want to whitelist.
>>
>> Cooper Quintin
>> Technology Director
>> radicalDESIGNS
>> (O) 415-738-0456 (C) 510 827 5382
>> 1201 Martin Luther King Jr. Blvd, Oakland, CA
>> PGP Key ID: 75FB 9347 FA4B 22A0 5068 080B D0EA 7B6F F0AF E2CA
>>
>> On 04/17/2013 10:59 AM, Hans-Christoph Steiner wrote:
>>>
>>> The free software version of this idea is the official package repository.
>>> Its a giant whitelist of trusted software. :)
>>>
>>> apt-get install notmalware
>>>
>>> .hc
>>>
>>> On 04/17/2013 01:47 PM, Cooper Quintin wrote:
>>>> Apparently McAfee is releasing some kernel level app whitelisting thing
>>>> for Android devices. Has anyone heard anything about this yet? It
>>>> seems like a really, really good idea, I only wish that McAfee weren't
>>>> the ones doing it. What are the potential problems with something like
>>>> this, other than placing one's trust in McAfee? Has anyone used it yet?
>>>> Any thoughts on how difficult it would be to make an open source
>>>> version of this?
>>>>
>>> _______________________________________________
>>> Guardian-dev mailing list
>>>
>>> Post: Guardian-dev at lists.mayfirst.org
>>> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
>>>
>>> To Unsubscribe
>>> Send email to: Guardian-dev-unsubscribe at lists.mayfirst.org
>>> Or visit: https://lists.mayfirst.org/mailman/options/guardian-dev/cooper%40radicaldesigns.org
>>>
>>> You are subscribed as: cooper at radicaldesigns.org
>>>
>> _______________________________________________
>> Guardian-dev mailing list
>>
>> Post: Guardian-dev at lists.mayfirst.org
>> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
>>
>> To Unsubscribe
>> Send email to: Guardian-dev-unsubscribe at lists.mayfirst.org
>> Or visit: https://lists.mayfirst.org/mailman/options/guardian-dev/cooper%40radicaldesigns.org
>>
>> You are subscribed as: cooper at radicaldesigns.org
>>
> _______________________________________________
> Guardian-dev mailing list
>
> Post: Guardian-dev at lists.mayfirst.org
> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
>
> To Unsubscribe
> Send email to: Guardian-dev-unsubscribe at lists.mayfirst.org
> Or visit: https://lists.mayfirst.org/mailman/options/guardian-dev/hans%40guardianproject.info
>
> You are subscribed as: hans at guardianproject.info
>
More information about the Guardian-dev
mailing list