Date: Thu, 4 Feb 1999 10:54:40 -0500 (EST) From: Garrett Wollman <wollman@khavrinen.lcs.mit.edu> To: James Wyatt <jwyatt@RWSystems.net> Cc: freebsd-security@FreeBSD.ORG Subject: Signatures on installation media (was: Re: tcpdump) Message-ID: <199902041554.KAA16479@khavrinen.lcs.mit.edu> In-Reply-To: <Pine.BSF.4.05.9902040828020.14557-100000@kasie.rwsystems.net> References: <199902040830.TAA13906@cheops.anu.edu.au> <Pine.BSF.4.05.9902040828020.14557-100000@kasie.rwsystems.net>
next in thread | previous in thread | raw e-mail | index | archive | help
<<On Thu, 4 Feb 1999 08:33:41 -0600 (CST), James Wyatt <jwyatt@RWSystems.net> said: > The crypto-sigs on the ROM would be better than TripWire sigs on a floppy > for the standard executables. For packages, would you have a list w/the > pkg and a sig for the lists? The CD-ROM already has MD5 digests for every file which can be installed (except X). There's not much point in signing something, since the verification key would have to be distributed on the same medium. You'll just have to trust your CD-ROM vendor. -GAWollman -- Garrett A. Wollman | O Siem / We are all family / O Siem / We're all the same wollman@lcs.mit.edu | O Siem / The fires of freedom Opinions not those of| Dance in the burning flame MIT, LCS, CRS, or NSA| - Susan Aglukark and Chad Irschick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199902041554.KAA16479>