From owner-freebsd-security@FreeBSD.ORG Tue Nov 29 23:33:27 2005 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 53CB416A41F for ; Tue, 29 Nov 2005 23:33:27 +0000 (GMT) (envelope-from kris@obsecurity.org) Received: from elvis.mu.org (elvis.mu.org [192.203.228.196]) by mx1.FreeBSD.org (Postfix) with ESMTP id 54CA143D58 for ; Tue, 29 Nov 2005 23:33:17 +0000 (GMT) (envelope-from kris@obsecurity.org) Received: from obsecurity.dyndns.org (elvis.mu.org [192.203.228.196]) by elvis.mu.org (Postfix) with ESMTP id 314411A4D79; Tue, 29 Nov 2005 15:33:17 -0800 (PST) Received: by obsecurity.dyndns.org (Postfix, from userid 1000) id 8C79051330; Tue, 29 Nov 2005 18:33:16 -0500 (EST) Date: Tue, 29 Nov 2005 18:33:16 -0500 From: Kris Kennaway To: Kris Kennaway Message-ID: <20051129233316.GA60287@xor.obsecurity.org> References: <20051129120151.5A2FB16A420@hub.freebsd.org> <002601c5f4fa$b5115320$e403000a@rickderringer> <20051129232703.GA60060@xor.obsecurity.org> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="bg08WKrSYDhXBjb5" Content-Disposition: inline In-Reply-To: <20051129232703.GA60060@xor.obsecurity.org> User-Agent: Mutt/1.4.2.1i Cc: freebsd-security@freebsd.org, aristeu Subject: Re: Reflections on Trusting Trust X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 29 Nov 2005 23:33:27 -0000 --bg08WKrSYDhXBjb5 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Nov 29, 2005 at 06:27:03PM -0500, Kris Kennaway wrote: > On Tue, Nov 29, 2005 at 01:36:31PM -0200, aristeu wrote: > > I'm new here, and I've posted only once. I just want to add my "just=20 > > another user" opinion on this... > >=20 > > Signing security advisories that sends the hashes for a file does a nic= e=20 > > job. > >=20 > > I think the only problem that exists is the package/ports deployment. I= =20 > > belive we can't trust only on hashes for this (tar already does a fine = job=20 > > on integrity...), because it can be easily circunvented. Maybe trusting= =20 > > this it is the real weakest link... >=20 > I'd be happy to work with someone who can implement a solution for the > package side. Also, pkg_sign(1) has existed for a long time, but needs the support infrastructure to make it usable. Kris --bg08WKrSYDhXBjb5 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQFDjOU8Wry0BWjoQKURAkVYAJwPgTppYQakS50yfy1WJ1RqAzwb2ACffmLL hCER8btPzPW2BBnJN3zHems= =kYcs -----END PGP SIGNATURE----- --bg08WKrSYDhXBjb5--