Re: binup project

To: Colin Percival <colin.percival@xxxxxxxxxxxxxxx>
Subject: Re: binup project
From: "Simon L. Nielsen" <simon@xxxxxxxx>
Date: Sun, 9 Mar 2003 14:19:21 +0100
Cc: freebsd-binup@xxxxxxxxxxx
Delivered-to: freebsd-binup@xxxxxxxxxxx
In-reply-to: <5.0.2.1.1.20030308222612.033d0e90@xxxxxxxxxxxxxxxx>
List-archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-id: <freebsd-binup.FreeBSD.ORG>
List-subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-binup>
List-unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-binup>
References: <5.0.2.1.1.20030307134749.01d80ba8@xxxxxxxxxxxxxxxx> <200303061459.00436.michael@xxxxxxxx> <200303061459.00436.michael@xxxxxxxx> <5.0.2.1.1.20030307134749.01d80ba8@xxxxxxxxxxxxxxxx> <5.0.2.1.1.20030308222612.033d0e90@xxxxxxxxxxxxxxxx>
Sender: owner-freebsd-binup@xxxxxxxxxxx
User-agent: Mutt/1.5.3i

On 2003.03.08 22:34:37 +0000, Colin Percival wrote:

>   My code cryptographically signs the updates; they can then be 
> distributed by whatever means is convenient (http, ftp, shortwave radio 
> broadcast...) although since the client code uses fetch(1) that imposes 
> some restrictions.  Doing things this way, in addition to eliminating 
> spoofing attacks, also makes it possible for the severely paranoid to 
> perform all secure operations on a system which is physically disconnected 
> from the Internet (and copy the update files to a webserver via sneakernet).
Ok, looking forward to seeing your next version.

-- 
Simon L. Nielsen

Attachment: pgpyky7wPRvYu.pgp
Description: PGP signature

Follow-Ups:
- Re: binup project
  - From: Colin Percival

References:
- Re: binup project
  - From: Colin Percival
- binup project
  - From: Michael Spector
- Re: binup project
  - From: Colin Percival

Prev by Date: Re: binup project
Next by Date: Re: binup project
Previous by thread: Re: binup project
Next by thread: Re: binup project
Index(es):
- Date
- Thread