[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: OpenBSD 3.2 official release files / CDs MD5 / SHAs / digital signatures online?

To: misc_(_at_)_openbsd_(_dot_)_org
Subject: Re: OpenBSD 3.2 official release files / CDs MD5 / SHAs / digital signatures online?
From: Chuck Yerkes <chuck+obsd_(_at_)_2003_(_dot_)_snew_(_dot_)_com>
Date: Tue, 3 Dec 2002 12:30:31 -0800
Mail-followup-to: Chuck Yerkes <chuck+obsd_(_at_)_2003_(_dot_)_snew_(_dot_)_com>, misc_(_at_)_openbsd_(_dot_)_org
Reply-to: misc_(_at_)_openbsd_(_dot_)_org

Quoting Dom De Vitto (dom_(_at_)_DeVitto_(_dot_)_com):
> Err, no thanks. I'd like my OS signatures in a system that I actually
> trust! (DNS Poisening anyone?)

Signed zones?  TSIG?  Using an authoritative host?  (cache poisoning
has only worked for non-authorititive zones).

My issue is that if/when someone roots the ftp server (openssh,
sendmail, tcpwrappers, etc), the sig file is on that same
machine and alterable.

Prev by Date: Re: OBSD - imap server
Next by Date: Re: OBSD - imap server
Previous by thread: OpenBSD 3.2 official release files / CDs MD5 / SHAs / digital signatures online?
Next by thread: Re: OBSD - imap server
Index(es):
- Date
- Thread

Visit your host, monkey.org