From owner-freebsd-security@FreeBSD.ORG Thu Dec 1 06:15:36 2005 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2550316A41F; Thu, 1 Dec 2005 06:15:36 +0000 (GMT) (envelope-from PeterJeremy@optushome.com.au) Received: from mail07.syd.optusnet.com.au (mail07.syd.optusnet.com.au [211.29.132.188]) by mx1.FreeBSD.org (Postfix) with ESMTP id 95FE243D53; Thu, 1 Dec 2005 06:15:34 +0000 (GMT) (envelope-from PeterJeremy@optushome.com.au) Received: from cirb503493.alcatel.com.au (c220-239-19-236.belrs4.nsw.optusnet.com.au [220.239.19.236]) by mail07.syd.optusnet.com.au (8.12.11/8.12.11) with ESMTP id jB16FUhr003583 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=NO); Thu, 1 Dec 2005 17:15:32 +1100 Received: from cirb503493.alcatel.com.au (localhost.alcatel.com.au [127.0.0.1]) by cirb503493.alcatel.com.au (8.12.10/8.12.10) with ESMTP id jB16FUHh035819; Thu, 1 Dec 2005 17:15:30 +1100 (EST) (envelope-from pjeremy@cirb503493.alcatel.com.au) Received: (from pjeremy@localhost) by cirb503493.alcatel.com.au (8.12.10/8.12.9/Submit) id jB16FUuD035818; Thu, 1 Dec 2005 17:15:30 +1100 (EST) (envelope-from pjeremy) Date: Thu, 1 Dec 2005 17:15:30 +1100 From: Peter Jeremy To: Alexander Leidinger Message-ID: <20051201061530.GG32006@cirb503493.alcatel.com.au> References: <20051127182116.GA30426@cirb503493.alcatel.com.au> <000e01c5f410$2de67820$1300110a@pooptop> <20051130144343.od5die60gsw4k0k0@netchild.homeip.net> <20051130181530.GE32006@cirb503493.alcatel.com.au> <20051130194250.255d2e18@Magellan.Leidinger.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20051130194250.255d2e18@Magellan.Leidinger.net> User-Agent: Mutt/1.4.2.1i X-PGP-Key: http://members.optusnet.com.au/peterjeremy/pubkey.asc Cc: freebsd-security@freebsd.org Subject: Re: Reflections on Trusting Trust X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 01 Dec 2005 06:15:36 -0000 On Wed, 2005-Nov-30 19:42:50 +0100, Alexander Leidinger wrote: > But if you get the same *wrong* data (for the PGP keys it's >relatively easy to verify) from several locations (cvsup*.FreeBSD.org + >cvsweb.freebsd.org + www.freebsd.org, don't forget to check if they >point to a reasonable amount of different IP's; Keep in mind that for most people these addresses will all go through a single ISP. You need to to check several locations via several different paths (eg home and work or maybe cross-check with a friend who uses a different ISP). > the printed handbook >and the handbook on the release CDs), then you have other things to >worry about... I agree that if Agent Smith is out to get you then you have problems. >Assuming enough resources: ATM only by downloading all and diffing >them. If they all match, you are either busted already since the >attacker controls too much, or you can say the probability is high >enough that you got a copy of the original repository. This is non-trivial because the repository is not static and CVS doesn't store transaction logs that would allow you to reproduce the repository state at a point in time. -- Peter Jeremy