Date: Tue, 18 Nov 2003 09:56:56 +0100 From: des@des.no (Dag-Erling =?iso-8859-1?q?Sm=F8rgrav?=) To: Colin Percival <colin.percival@wadham.ox.ac.uk> Cc: freebsd-stable@freebsd.org Subject: Re: Secure updating of OS and ports Message-ID: <xzp7k1yxdev.fsf@dwp.des.no> In-Reply-To: <5.0.2.1.1.20031117165641.03101720@popserver.sfu.ca> (Colin Percival's message of "Mon, 17 Nov 2003 17:00:16 %2B0000") References: <5.0.2.1.1.20031117165641.03101720@popserver.sfu.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
Colin Percival <colin.percival@wadham.ox.ac.uk> writes: > At 06:02 17/11/2003 -0800, Carol Overes wrote: > > I'm thinking of updating kernel and binaries with > > patches form ftp.freebsd.org which are siganed with > > the PGP key of the security officers. However, this > > has to be hand-made patching. Does anyone know a > > secure way via for example cvsup ? > CVSup is insecure. FreeBSD Update might do what you want, but > you'd have to trust me. :) ...and three-hundred-odd FreeBSD developers. At some point you just have to stop doubting and start trusting. DES --=20 Dag-Erling Sm=F8rgrav - des@des.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?xzp7k1yxdev.fsf>