Automated update distribution - was: RE: [Esa-l] Files to poison:
Hybris
R P Herrold
herrold at owlriver.com
Wed Dec 13 20:36:26 PST 2000
On Wed, 13 Dec 2000, John D. Hardin wrote:
> > There doesn't need to be a single, central server (thought that'd
> > probably be nice).
>
> I'll be providing a basic form of that when the new sanitizer is
> released.
... One concern, John -- if folks are proposing to
auto-install code from a cronned FTP process, there should
probably be a md5sum, and signing of that sum with
public/private key pair for a given release, to permit
automated authentication, using for example, gpg -- otherwise,
one is open to a DNS forging attack ... in that the filter is
running in the root account, this would have disasterous
consequenes. ...
-- Russ Herrold
More information about the esd-l
mailing list