On Sat, July 19, 2008 5:25 pm, James G. Sack (jim) wrote: > Lan Barnes wrote: >> On Fri, July 18, 2008 8:44 pm, James G. Sack (jim) wrote: >>> In any case, I can think of something else to observe: embedded labels >>> can not really be used to verify files -- you need a real hash >>> authentication mechanism to do that, eh? But that wasn't the question >>> here, I don't think ..so.. nevermind. :-) > > .. > >> No, they work, Jim, thanks to strings > > Sorry for ambiguities, I was trying to say that the embedded strings > don't really guarantee authenticity of the file -- thinking of malicious > modifications or even simply re-compiles that change the object code > without changing the embedded keyword. >
Well, sheesh, if we're going to be _paranoid_ ... ;-) -- Lan Barnes SCM Analyst Linux Guy Tcl/Tk Enthusiast Biodiesel Brewer -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
