On Mon, Jan 14, 2008 at 12:11:13PM +0100, Peter N. M. Hansteen wrote: >Joe <[EMAIL PROTECTED]> writes: > >>> # Secure Distribution. >>> The most secure operation system gets distributed on FTP servers >>> as unsigned binaries. >> >> You should create your own binaries if you want secure binaries. > >He's also conveniently forgetting about the MD5 sums, conveniently >provided in a file called MD5 along with the installables. IMO >'signed binaries' is an overhyped buzzword.
When we will meet in Riga, I will like to hear from you explanation, how does putting md5 checksum file *along* with installables on the same vulnerable channel, helps to make sure, that they are not backdoored ;] > >-- >Peter N. M. Hansteen, member of the first RFC 1149 implementation team >http://bsdly.blogspot.com/ http://www.datadok.no/ http://www.nuug.no/ >"Remember to set the evil bit on all malicious network traffic" >delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
