From owner-freebsd-chat@FreeBSD.ORG Mon Jun 23 00:24:39 2003 Return-Path: Delivered-To: freebsd-chat@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 09F3F37B401 for ; Mon, 23 Jun 2003 00:24:39 -0700 (PDT) Received: from tulip.epweb.co.za (tulip.epweb.co.za [196.14.166.22]) by mx1.FreeBSD.org (Postfix) with ESMTP id 98FDA43FE3 for ; Mon, 23 Jun 2003 00:24:30 -0700 (PDT) (envelope-from ultraviolet@tulip.epweb.co.za) Received: from tulip.epweb.co.za (localhost.epweb.co.za [127.0.0.1]) by tulip.epweb.co.za (8.12.9/8.12.9) with ESMTP id h5N7OOvD023023 for ; Mon, 23 Jun 2003 09:24:24 +0200 (SAST) (envelope-from ultraviolet@tulip.epweb.co.za) Received: (from ultraviolet@localhost) by tulip.epweb.co.za (8.12.9/8.12.9/Submit) id h5N7OIHE023022 for chat@freebsd.org; Mon, 23 Jun 2003 09:24:18 +0200 (SAST) Date: Mon, 23 Jun 2003 09:24:18 +0200 From: William Fletcher To: chat@freebsd.org Message-ID: <20030623072418.GF18653@tulip.epweb.co.za> References: <5.0.2.1.1.20030622044124.02cc0948@popserver.sfu.ca> <5.0.2.1.1.20030622022111.02c1cdf8@popserver.sfu.ca> <5.0.2.1.1.20030621193449.02c91ce8@popserver.sfu.ca> <5.0.2.1.1.20030621175853.02c92e00@popserver.sfu.ca> <20030621163835.GA18653@tulip.epweb.co.za> <5.0.2.1.1.20030621175853.02c92e00@popserver.sfu.ca> <5.0.2.1.1.20030621193449.02c91ce8@popserver.sfu.ca> <5.0.2.1.1.20030622022111.02c1cdf8@popserver.sfu.ca> <5.0.2.1.1.20030622044124.02cc0948@popserver.sfu.ca> <5.0.2.1.1.20030622084009.01c8d600@popserver.sfu.ca> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="IJAclU0AInkryoed" Content-Disposition: inline In-Reply-To: <5.0.2.1.1.20030622084009.01c8d600@popserver.sfu.ca> User-Agent: Mutt/1.4i Subject: Re: Cryptographically enabled ports tree. X-BeenThere: freebsd-chat@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: ultraviolet@epweb.co.za List-Id: Non technical items related to the community List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Jun 2003 07:24:39 -0000 --IJAclU0AInkryoed Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi, again.=20 No use signing if cvsup is a mess. We need cvsup-ssl, Then, all the big security guys need to do=20 is provide a public key for the cvsup-mirrors, which then get the public key for the big cvsup server, etc.=20 That way, cvsup is secure, and we can trust it. Then, we just get all the ports maintainers to provide public keys and then we can download the distfiles from ftp\http and know they're trusted.=20 On the other hand, this means that we don't really need signed=20 distfiles, the md5 checksum should do just fine, because we know that we're getting our ports tree from a trusted source. Thats just how I see it. Please, Please stop me if I'm wrong.=20 Please correct me if I misunderstood all the e-mails in this thread too. = =20 --=20 William Fletcher (ultraviolet) Powered by http://www.FreeBSD.org/ IT Administrator, EPWeb networks. irc at irc.epweb.co.za http://www.epweb.co.za/ http://vision.za.net/irc/ Tel: +27 (041) 395 6800 =20 Fax: +27 (041) 395 6818=09 Support: support@epweb.co.za For countless days, We walked alone, Directionless and vunerable, Sitting t= argets wearing smiles. =20 --IJAclU0AInkryoed Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+9qshju3fq0dMPxsRAhEzAJ4q2SwBAjxlINbiiS0TQCcu5Z0a1ACgnd2N KMVq8JzDHM/sfvdYxysY0ug= =EGqB -----END PGP SIGNATURE----- --IJAclU0AInkryoed--