Date: Thu, 08 Feb 2001 10:40:46 -0700 From: Wes Peters <wes@softweyr.com> To: Markus Holmberg <markush@acc.umu.se> Cc: Garrett Wollman <wollman@khavrinen.lcs.mit.edu>, freebsd-security@FreeBSD.ORG, freebsd-ports@FreeBSD.ORG Subject: Re: Package integrity check? Message-ID: <3A82DA1E.BC4A9CDD@softweyr.com> References: <20010205210459.A2479@acc.umu.se> <3A7F9AB6.5CAA983B@softweyr.com> <200102061526.KAA31832@khavrinen.lcs.mit.edu> <3A802FAF.792F61F5@softweyr.com> <200102061802.NAA33086@khavrinen.lcs.mit.edu> <20010208132123.A4400@acc.umu.se>
next in thread | previous in thread | raw e-mail | index | archive | help
Markus Holmberg wrote:
>
> Thanks Wes.
>
> I'm running -STABLE (and I was mostly just curious, not in a hurting need
> for this functionality right away) so I'm not sure I'm trying it out. But
> it's good to know it's available.
As soon as we get a couple of other issues (mostly Makefile) worked out,
I'll MFC the package-signing stuff. It runs fine on my laptop, which is:
FreeBSD homer 4.2-STABLE FreeBSD 4.2-STABLE #0: Mon Jan 29 10:13:07 MST 2001
> On Tue, Feb 06, 2001 at 01:02:08PM -0500, Garrett Wollman wrote:
> > 1) Whatever process generates and checksums the packages also makes
> > and signs a master list of all the checksums from each package, and
> >
> > 2) Whatever process installs software from the package compares its
> > checksum against this master list, and verifies the signature of the
> > master list.
>
> It was these two things that I was thinking of in first place.. (When
> asking if it was possible to check for package integrity). But I realize
> it is not conceivable without a good deal of effort, so I was merely
> wondering if anyone else thought of it.
That's the nice thing about X.509 certs, you only have to distribute the
cert from whoever is providing the package. The package contains the
checksum, verifying the contents, and the signing process assures you
that the checksum contained in the cert hasn't been tampered with. Now
all you need is a secure way to get the certificate from the originator.
> > I think that this would be both useful and worthwhile, but again, we
> > need to make sure that legally we are not promising anything other
> > than ``these packages have not been modified since generation''.
^^^^^^^^^^
signing
--
"Where am I, and what am I doing in this handbasket?"
Wes Peters Softweyr LLC
wes@softweyr.com http://softweyr.com/
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3A82DA1E.BC4A9CDD>