-----BEGIN PGP SIGNED MESSAGE-----
On Mon, 18 Nov 2002 06:53:51 -0800 "Michael T. Babcock" <[EMAIL PROTECTED]> wrote: >> >> >>Oh yes it's all so simple we sign the webinstaller in fact we don't >even >>need to do that we just insert it under an SSK. </sarcasm>. The >problem >>is that we need to be able to revoke and/or update the signing >key, >>otherwise a Bad Guy who got the key could destroy most of the network >>just by distributing compromized nodes. >> > >You can, of course, revoke signatures with GPG without a problem >and >then sign the distributions with it (at least as a detached signature). > > The installer could offer to check that signature by calling GPG >but >this is highly insecure (as anyone who replaced the binary would >forge >the call). What you really want is for people to check the signature > >themselves (with GPG/PGP). > Yes thats excellent from a corporate perspective since the more areas you leave for the l'users your customers to fuckup the less liability you have. However in an open for the most part volunteer project such liability and profit concerns do not arise so for that reason the developers can afford to design systems to protect the l'user from their own incompetence and are necessary if one cares to attempt to offer security and anonymity rather than create opportunities to destroy it. I don't believe "our system works, you fucked up" is an appropriate goal in the circumstances. -----BEGIN PGP SIGNATURE----- Version: Hush 2.2 (Java) Note: This signature can be verified at https://www.hushtools.com/verify wlcEARECABcFAj3ZGgwQHGthYm9vbUBodXNoLmNvbQAKCRB5zuO1YwPwCafmAJ0VR2EA Q3GynwO7lJWiDv7rs3JtVQCglgBMYXMvwzk4HGmT9V18k9ik+c8= =pxSH -----END PGP SIGNATURE----- Get your free encrypted email at https://www.hushmail.com _______________________________________________ support mailing list [EMAIL PROTECTED] http://hawk.freenetproject.org/cgi-bin/mailman/listinfo/support
