From owner-freebsd-security@freebsd.org Fri Nov 4 16:09:32 2016 Return-Path: Delivered-To: freebsd-security@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 28193C2FE38 for ; Fri, 4 Nov 2016 16:09:32 +0000 (UTC) (envelope-from gjb@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:1900:2254:206c::16:87]) by mx1.freebsd.org (Postfix) with ESMTP id 1951A894; Fri, 4 Nov 2016 16:09:32 +0000 (UTC) (envelope-from gjb@FreeBSD.org) Received: from FreeBSD.org (freefall.freebsd.org [IPv6:2001:1900:2254:206c::16:87]) by freefall.freebsd.org (Postfix) with ESMTP id CCB451C58; Fri, 4 Nov 2016 16:09:31 +0000 (UTC) (envelope-from gjb@FreeBSD.org) Date: Fri, 4 Nov 2016 16:09:29 +0000 From: Glen Barber To: org.freebsd.security@io7m.com Cc: freebsd-security@freebsd.org Subject: Re: Signatures for base.txz, kernel.txz, etc? Message-ID: <20161104160929.GF79915@FreeBSD.org> References: <20161104160304.7e3e9815@copperhead.int.arc7.info> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="f61P+fpdnY2FZS1u" Content-Disposition: inline In-Reply-To: <20161104160304.7e3e9815@copperhead.int.arc7.info> X-Operating-System: FreeBSD 11.0-CURRENT amd64 X-SCUD-Definition: Sudden Completely Unexpected Dataloss X-SULE-Definition: Sudden Unexpected Learning Event X-PEKBAC-Definition: Problem Exists, Keyboard Between Admin/Computer X-Spidey-Sense: Uh oh, Peter logged in User-Agent: Mutt/1.5.24 (2015-08-30) X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 04 Nov 2016 16:09:32 -0000 --f61P+fpdnY2FZS1u Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Nov 04, 2016 at 04:03:04PM +0000, org.freebsd.security@io7m.com wro= te: > Hello. >=20 > Are there any plans to provide PGP signatures on base.txz, kernel.txz, > and friends? Right now, the only (apparent) way to obtain them is via > http://ftp.freebsd.org over unsecured HTTP (the HTTPS certificate is > misconfigured; it's for download.freebsd.org) and no signature files are > provided. >=20 They are provided in the misc/freebsd-release-manifests port. Glen --f61P+fpdnY2FZS1u Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJYHLK5AAoJEAMUWKVHj+KTsSMP/jhndvlKfPFDbMuXKDrgDAMF mpjhMSjwlOpWqRHIVXVqk0ODNpQMV6p40W/VJ2OnTADjuJirDcIPh6GSVy1jHsHj gYiLf6D2tts1+b3KjgZEd8QZ2oCCRdN8WR51dIA7bwPn8l8ovNKqKpRrlho15kPQ Qf65Oq2y9y1scqq3VNM8IlRYAoGVC89sus33Ynx9xf8fyloPUnl1ZHl0sivXXM1t GEQGV7BiPUfkF21EujQ0KTlXkfNvOWCBg74d/UTJI62sSOU2qU9vVarYFCSLw/+E iM2hzj7Podds2HpbJazXcg9PeJWDN0shXcpksIdMYd3RCTbdzd+lW6UMHEpjbIj7 LkZ2AK6w7D4wW9f2do1Natobv8FE9W7VgrxYX31gXoFvdP7h3C5YRCNZF8dUFyLY tXPGOeMeQzb08KH+II+7NrHl9BMElVwpN799pNQiV9g6CgTN9+i/nTD+xxZIhPMC UJnYBIdg74Wq+QkRI044sz9hf1ipf5mbMx1RJPVbGUCp7AzrwK9Cscvbotx3Kek8 nbeY0LDkasWnZGkV8jVaLED6PA4jJAf0KshJSZrjYiT1I9HVSUF0yyb/kXoycfbz AzOo1/vTGVBJS9+HrloM6MeejAXW9vyOGRR7xsEY6TYsPudOvkO+K171rO7+pBO8 aDY9gLp4eKfExA6/aNis =YZ9K -----END PGP SIGNATURE----- --f61P+fpdnY2FZS1u--