On Sat, 07 Feb 2004 20:27:11 +0200, Petri Helenius said: > It would help if systems would only execute code that is signed > properly. This would make malware traceable. However the current way of > getting your code signed is in many cases too costly for the casual open > source developer so people are used to running unsigned or selfsigned > application even when the facilities to check signatures would already > exist in the system. (though for example in Windows, signatures are only > checked at install, not runtime)
People are used to doing dumb things. Here's a depressing story: http://www.pcpro.co.uk/news/news_story.php?id=53390
pgp00000.pgp
Description: PGP signature