Re: [Sks-devel] Secure packaging

sks-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sks-devel] Secure packaging

From:	David Shaw
Subject:	Re: [Sks-devel] Secure packaging
Date:	Fri, 5 Dec 2003 12:58:41 -0500
User-agent:	Mutt/1.5.5i

On Fri, Dec 05, 2003 at 12:52:52PM -0500, Yaron M. Minsky wrote:

> In light of the savannah break-in, and general caution, it seems
> like some kind of package-signing might be in order.  Peter
> Palfrader is brought this issue up to me, and it seems like a good
> idea.  Do people have any thoughts on the best way to distribute
> signed distributions?  How do people normally go about it?

Build the usual tarball, and make a detached signature.  End result is
tarball.tar.gz and tarball.tar.gz.sig.  Distribute the two together.

David

[Prev in Thread]

Current Thread

[Next in Thread]

[Sks-devel] Secure packaging, Yaron M. Minsky, 2003/12/05
- Re: [Sks-devel] Secure packaging, David Shaw <=
- Re: [Sks-devel] Secure packaging, Peter Palfrader, 2003/12/05
  - Re: [Sks-devel] Secure packaging, Dan Egli, 2003/12/05
    - Re: [Sks-devel] Secure packaging, Peter Palfrader, 2003/12/05
    - Re: [Sks-devel] Secure packaging, David Shaw, 2003/12/05
    - Re: [Sks-devel] Secure packaging, Thomas Sjögren, 2003/12/05

Prev by Date: [Sks-devel] Secure packaging
Next by Date: Re: [Sks-devel] Secure packaging
Previous by thread: [Sks-devel] Secure packaging
Next by thread: Re: [Sks-devel] Secure packaging
Index(es):
- Date
- Thread