greetings. i personally am new at this leaf thing, but:
we've been using lrp for the alpha test of a bunch of distributed
caches for publishing scholarly journals. (see www.lockss.stanford.edu
if that interests you.)
thanks for all your great work, by the way.
i'm about to switch to oxygen, which i've built on 2.2.18 (i
hope...) for our beta test.
so the question is:
when (not if) you run out of room on a single floppy, which
contains "trustworthy" software, how to download additional
.lrps in a trustworthy way?
we seldom or never want to change the floppies, which will be
at remote locations and generally write-locked.
this means using md5 or sha1 hashes with the signatures kept on the floppy
won't work (as we'll have to update the signatures each time we update a
package). obviously we could keep the signatures at a known trustworthy
location, but that becomes a single point of failure in the booting
of the system.
so we're thinking of including on the floppy a public key
corresponding with the private key used to sign each package
(some sort of certificate), and checking each package as it's
downloaded.
has anyone already done this sort of thing?
does the apkg format allow for signed content?
--
mark seiden, [EMAIL PROTECTED], 1-(650) 592 8559 (voice) Pacific Time Zone
_______________________________________________
Leaf-devel mailing list
[EMAIL PROTECTED]
http://lists.sourceforge.net/lists/listinfo/leaf-devel
