Le jeu 19/06/2003 ŕ 07:08, Götz Waschk a écrit : > Am Mittwoch, 18. Juni 2003, 12:51:48 Uhr MET, schrieb FACORAT Fabrice: > > Now I just want to make an assumption : users should not have access to > > package file list or at least for core or important or server software. > > To my mind it is a security risk as users doesn't need to knwo where > > they are. Maybe binary/doc for common packages but for core > > packages/server/critical packages they should not see them. > > You can limit the access to the rpm command if you are that paranoid, but > I don't understand why this could be a security problem.
security by obscurity