Date: Tue, 7 May 2002 15:55:40 -0400 (EDT) From: Garrett Wollman <wollman@khavrinen.lcs.mit.edu> To: "Karsten W. Rohrbach" <karsten@rohrbach.de> Cc: security@FreeBSD.ORG Subject: ports signing, Was: cvsup/install over ssh? Message-ID: <200205071955.g47Jtedk077792@khavrinen.lcs.mit.edu> In-Reply-To: <20020507144833.L15411@mail.webmonster.de> References: <AF13VLYGFIOSYBQGVND1RLAF2CWRUCWTJKP50WBP@ziplip.com> <20020507144833.L15411@mail.webmonster.de>
next in thread | previous in thread | raw e-mail | index | archive | help
<<On Tue, 7 May 2002 14:48:33 +0200, "Karsten W. Rohrbach" <karsten@rohrbach.de> said: > on a high-volume download site i wouldn't even think about implementing > payload signing/encryption on the network layer. the cost of cpu cycles > in such an environment is much too high. as hardware gets faster and > cheaper, it might become reality. Speaking as a mirror operator, I have absolutely no interest whatsoever in doing so. > perhaps someday, there will be tokens and configuration info available > for ftp.freebsd.org, but what about the mirrors? There is a research group in our Lab who are working on solving this problem for the general case of certifying distributed replicas of public data. -GAWollman To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200205071955.g47Jtedk077792>