Automated update distribution - was: RE: [Esa-l] Files to poison:
Hybris
John D. Hardin
jhardin at wolfenet.com
Thu Dec 14 06:39:35 PST 2000
On Wed, 13 Dec 2000, R P Herrold wrote:
> > > There doesn't need to be a single, central server (thought that'd
> > > probably be nice).
> >
> > I'll be providing a basic form of that when the new sanitizer is
> > released.
>
> ... One concern, John -- if folks are proposing to
> auto-install code from a cronned FTP process, there should
> probably be a md5sum, and signing of that sum with
> public/private key pair for a given release, to permit
> automated authentication, using for example, gpg -- otherwise,
> one is open to a DNS forging attack ... in that the filter is
> running in the root account, this would have disasterous
> consequenes. ...
Good idea - I'll see what I can come up with.
--
John Hardin KA7OHZ ICQ#15735746 http://www.wolfenet.com/~jhardin/
jhardin at wolfenet.com pgpk -a finger://gonzo.wolfenet.com/jhardin
768: 0x41EA94F5 - A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
1024: 0xB8732E79 - 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
"Bother," said Pooh as he struggled with /etc/sendmail.cf, "it never
does quite what I want. I wish Christopher Robin was here."
-- Peter da Silva in a.s.r
-----------------------------------------------------------------------
11 days until we celebrate Christmas by killing millions of trees
More information about the esd-l
mailing list