|
From: | Kenneth Loafman |
Subject: | Re: [Duplicity-talk] Manifest stores SHA1 hash of files, checked before restore? |
Date: | Wed, 13 Jul 2011 20:39:40 -0500 |
On 14 July 2011 01:53, Chris Poole <address@hidden> wrote:Yes.
> (Thus, it's very important to sign
> backups being stored in untrusted locations.)
I don't think there's much point having ad hoc partial checks for
malicious changes when signing gives you reliable protection. An
attacker could always replace the manifest too.
[Prev in Thread] | Current Thread | [Next in Thread] |