Date: Sat, 16 Jan 2010 20:41:59 +0200 From: Angelin Lalev <lalev.angelin@gmail.com> To: freebsd-questions@freebsd.org Subject: Secure method for fetching freebsd sources ? Message-ID: <532b03711001161041v2400389v915c0fee80dcd840@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
Greetings, Which is the *secure* way of fetching freebsd sources? Cvsup looks prone to MiM attacks, CTM looks promising, but only if I have been member of the appropriate ctm list since the release of 8.0. (it seems that the ctm deltas on the ftp are not signed.). Do FreeBSD cvs servers support ssh instead of rsh access as OpenBSD server do? Other alternatives? Please note that this is not a theoretical question. I really have a system which i'll put in a place I don't trust, so I'll try to encrypt everything from the disk to the connections which I will use for updating.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?532b03711001161041v2400389v915c0fee80dcd840>