“Trusted” Vendor Update?
Posted in Shouldn't Be Vulnerable on September 27th, 2010 by RodneyI like this (from XKCD: “Debian Main” is the title) …
I especially like the fact it works as artwork, in case I ever do a presentation on unauthenticated/untrustworthy package update mechanisms. It reminds me of Skype, when they try to unilaterally update my machine, or Apple, when it tries to claim Safari – the initial installer – is an “upgrade” to iTunes for the Shuffle.