Date: Sat, 21 Jun 2003 21:49:45 +0100 From: Colin Percival <colin.percival@wadham.ox.ac.uk> To: Matthew West <mwest@uct.ac.za> Cc: chat@freebsd.org Subject: Re: Cryptographically enabled ports tree. Message-ID: <5.0.2.1.1.20030621214547.02caec40@popserver.sfu.ca> In-Reply-To: <20030621204357.GA60681@ucthpx.uct.ac.za> References: <5.0.2.1.1.20030621193449.02c91ce8@popserver.sfu.ca> <5.0.2.1.1.20030621175853.02c92e00@popserver.sfu.ca> <20030621163835.GA18653@tulip.epweb.co.za> <5.0.2.1.1.20030621175853.02c92e00@popserver.sfu.ca> <5.0.2.1.1.20030621193449.02c91ce8@popserver.sfu.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
At 22:43 21/06/2003 +0200, Matthew West wrote: >On Sat, Jun 21, 2003 at 07:38:38PM +0100, Colin Percival wrote: > > The only secure distribution, > > AFAIK, is the ISO image, because the MD5 sum of that is announced in a > > (signed) release announcement. > >Which is why it's a good idea to purchase the "official" FreeBSD CD set >and use that to do your installation, or even just mount it on your local >FTP server. Err... did you read what I wrote? There's no need to purchase the CDs; the MD5 hash of the ISO image is securely published, so you can safely download the ISO image and burn your own CDs. Of course, there are other reasons to purchase the CDs, but security isn't one of them. Colin Percival
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.0.2.1.1.20030621214547.02caec40>