From owner-freebsd-ports Sun Dec 31 0:20:33 2000 From owner-freebsd-ports@FreeBSD.ORG Sun Dec 31 00:20:31 2000 Return-Path: Delivered-To: freebsd-ports@freebsd.org Received: from peorth.iteration.net (peorth.iteration.net [208.190.180.178]) by hub.freebsd.org (Postfix) with ESMTP id 72F5237B400; Sun, 31 Dec 2000 00:20:30 -0800 (PST) Received: by peorth.iteration.net (Postfix, from userid 1001) id 5B0FF574E0; Sun, 31 Dec 2000 02:21:01 -0600 (CST) Date: Sun, 31 Dec 2000 02:21:01 -0600 From: "Michael C . Wu" To: Wes Peters Cc: Will Andrews , ports@FreeBSD.ORG, Robert Watson , Warner Losh , Kris Kennaway Subject: Re: Package signing tools Message-ID: <20001231022101.A24801@peorth.iteration.net> Reply-To: "Michael C . Wu" References: <3A4ED1C0.14061CE5@softweyr.com> <20001231003920.A24519@peorth.iteration.net> <20001231014344.T305@argon.firepipe.net> <3A4EDE33.84C7072@softweyr.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3A4EDE33.84C7072@softweyr.com>; from wes@softweyr.com on Sun, Dec 31, 2000 at 12:20:19AM -0700 X-PGP-Fingerprint: 5025 F691 F943 8128 48A8 5025 77CE 29C5 8FA1 2E20 X-PGP-Key-ID: 0x8FA12E20 Sender: keichii@peorth.iteration.net Sender: owner-freebsd-ports@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sun, Dec 31, 2000 at 12:20:19AM -0700, Wes Peters scribbled: | Will Andrews wrote: | > | > On Sun, Dec 31, 2000 at 12:39:20AM -0600, Michael C . Wu wrote: | > > You can also use the Perl PGP module. However, at the very least you | > > really want to have PGP5 or PGP6. | > | > What about other types of signatures? Should we support more than one kind? | | It currently supports X.509 (which I heartily recommend), PGP (which is | somewhat shaky, as I pointed out), and MD5, where you prime the ports | database with an MD5 file and then check that the MD5 of the .tgz file | against that. You misunderstood me. :) I was saying, "You can replace original PGP with perl pgp module or pgp5/6." | > > Consider integrating pkg_version with this? This would allow | > > for global ports update. | > | > Yes, PLEASE don't create a new program. Integrate this functionality | > (checking signatures) into pkg_info or pkg_version (I prefer the former | > myself). By integration, I meant that the output should be parseable by pkg_version and pkg_info. | -- +------------------------------------------------------------------+ | keichii@peorth.iteration.net | keichii@bsdconspiracy.net | | http://peorth.iteration.net/~keichii | Yes, BSD is a conspiracy. | +------------------------------------------------------------------+ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message