Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 6 Feb 2001 10:26:58 -0500 (EST)
From:      Garrett Wollman <wollman@khavrinen.lcs.mit.edu>
To:        Wes Peters <wes@softweyr.com>
Cc:        freebsd-security@FreeBSD.ORG, freebsd-ports@FreeBSD.ORG
Subject:   Re: Package integrity check?
Message-ID:  <200102061526.KAA31832@khavrinen.lcs.mit.edu>
In-Reply-To: <3A7F9AB6.5CAA983B@softweyr.com>
References:  <20010205210459.A2479@acc.umu.se> <3A7F9AB6.5CAA983B@softweyr.com>

next in thread | previous in thread | raw e-mail | index | archive | help
<<On Mon, 05 Feb 2001 23:33:26 -0700, Wes Peters <wes@softweyr.com> said:

> We could discuss some of the sensible things people asked for and
> add them after the fact.

We also need to be very clear about what it means for a package to be
signed -- particularly in light of laws in the US and elsewhere giving
legal status to digital signatures.  If there's one good thing to be
said about X.509, there's a lot of ways to stick signed blobs of text
into those certificates....

-GAWollman



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200102061526.KAA31832>