Date: Tue, 29 Nov 2005 18:33:16 -0500 From: Kris Kennaway <kris@obsecurity.org> To: Kris Kennaway <kris@obsecurity.org> Cc: freebsd-security@freebsd.org, aristeu <suporte@wahtec.com.br> Subject: Re: Reflections on Trusting Trust Message-ID: <20051129233316.GA60287@xor.obsecurity.org> In-Reply-To: <20051129232703.GA60060@xor.obsecurity.org> References: <20051129120151.5A2FB16A420@hub.freebsd.org> <002601c5f4fa$b5115320$e403000a@rickderringer> <20051129232703.GA60060@xor.obsecurity.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--bg08WKrSYDhXBjb5 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Nov 29, 2005 at 06:27:03PM -0500, Kris Kennaway wrote: > On Tue, Nov 29, 2005 at 01:36:31PM -0200, aristeu wrote: > > I'm new here, and I've posted only once. I just want to add my "just=20 > > another user" opinion on this... > >=20 > > Signing security advisories that sends the hashes for a file does a nic= e=20 > > job. > >=20 > > I think the only problem that exists is the package/ports deployment. I= =20 > > belive we can't trust only on hashes for this (tar already does a fine = job=20 > > on integrity...), because it can be easily circunvented. Maybe trusting= =20 > > this it is the real weakest link... >=20 > I'd be happy to work with someone who can implement a solution for the > package side. Also, pkg_sign(1) has existed for a long time, but needs the support infrastructure to make it usable. Kris --bg08WKrSYDhXBjb5 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQFDjOU8Wry0BWjoQKURAkVYAJwPgTppYQakS50yfy1WJ1RqAzwb2ACffmLL hCER8btPzPW2BBnJN3zHems= =kYcs -----END PGP SIGNATURE----- --bg08WKrSYDhXBjb5--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20051129233316.GA60287>