From owner-cvs-all@FreeBSD.ORG Tue Jan 30 18:20:34 2007 Return-Path: X-Original-To: cvs-all@freebsd.org Delivered-To: cvs-all@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id E022F16A402 for ; Tue, 30 Jan 2007 18:20:34 +0000 (UTC) (envelope-from peterjeremy@optushome.com.au) Received: from turion.vk2pj.dyndns.org (c220-239-3-125.belrs4.nsw.optusnet.com.au [220.239.3.125]) by mx1.freebsd.org (Postfix) with ESMTP id 51FBC13C467 for ; Tue, 30 Jan 2007 18:20:34 +0000 (UTC) (envelope-from peterjeremy@optushome.com.au) Received: from turion.vk2pj.dyndns.org (localhost.vk2pj.dyndns.org [127.0.0.1]) by turion.vk2pj.dyndns.org (8.13.8/8.13.8) with ESMTP id l0UIKWZs003105; Wed, 31 Jan 2007 05:20:32 +1100 (EST) (envelope-from peter@turion.vk2pj.dyndns.org) Received: (from peter@localhost) by turion.vk2pj.dyndns.org (8.13.8/8.13.8/Submit) id l0UIKWdm003104; Wed, 31 Jan 2007 05:20:32 +1100 (EST) (envelope-from peter) Date: Wed, 31 Jan 2007 05:20:32 +1100 From: Peter Jeremy To: Gabor Kovesdan Message-ID: <20070130182032.GD892@turion.vk2pj.dyndns.org> References: <200701291905.l0TJ57fG093002@repoman.freebsd.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="B4IIlcmfBL/1gGOG" Content-Disposition: inline In-Reply-To: <200701291905.l0TJ57fG093002@repoman.freebsd.org> X-PGP-Key: http://members.optusnet.com.au/peterjeremy/pubkey.asc User-Agent: Mutt/1.5.13 (2006-08-11) Cc: cvs-ports@freebsd.org, cvs-all@freebsd.org, ports-committers@freebsd.org Subject: Re: cvs commit: ports/audio/gnump3d Makefile distinfo ports/devel/bglibs Makefile ports/devel/cppi Makefile ports/devel/cvsd Makefile ports/dns/walker Makefile distinfo ports/ftp/lftp Makefile distinfo ports/ftp/twoftpd Makefile ... X-BeenThere: cvs-all@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: CVS commit messages for the entire tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Jan 2007 18:20:35 -0000 --B4IIlcmfBL/1gGOG Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, 2007-Jan-29 19:05:07 +0000, Gabor Kovesdan wrote: > Remove USE_GPG from all effected ports. This sounds like it could have been useful. FreeBSD is currently sorely missing a good general authentication mechanism (though cperciva@ is doing his best to create bits of one). > was supposed to work is useless, because if we can't trust the distfile = =66rom > the remote machine, we can't trust the signature from the same machine e= ither. This isn't true. If you have a known good public key, then you can trust the signature (and hence the distfile), even if both are downloaded from crackers-r-us. The whole point of digital signatures is that you can obtain information from an untrusted source (eg the Internet) and be able to determine if it was has been tampered with. > Our MD5 and SHA256 are good for checking both the sanity and the > trustiness of distfiles. Except that the MD5 and SHA256 checksums can't be totally trusted. There are a variety of MITM attacks which could allow someone to alter checksums stored on an end-user hosts. I think it's unfortunate that the security team was not involved in this decision. --=20 Peter Jeremy --B4IIlcmfBL/1gGOG Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (FreeBSD) iD8DBQFFv4xw/opHv/APuIcRArlLAJwNlWitRdjt/C9/1MXEouPJ09PTNQCgwdPH jpCV4XQxDtuWIpV6YxGbQ3I= =yujR -----END PGP SIGNATURE----- --B4IIlcmfBL/1gGOG--