Re: debsigs

To: Ben Collins <bcollins@debian.org>
Cc: debian-devel@lists.debian.org
Subject: Re: debsigs
From: Brian May <bam@debian.org>
Date: Wed, 27 Mar 2002 14:26:02 +1100
Message-id: <[🔎] 20020327032602.GC7441@snoopy.apana.org.au>
Mail-followup-to: Brian May <bam@debian.org>, Ben Collins <bcollins@debian.org>, debian-devel@lists.debian.org
In-reply-to: <[🔎] 20020327022101.GJ19032@blimpo.internal.net>
References: <[🔎] 1016569697.2991.18.camel@altair> <[🔎] 87r8mfm39u.fsf@CERT.Uni-Stuttgart.DE> <[🔎] 20020321000430.GA7904@snoopy.apana.org.au> <[🔎] 20020321052420.GC20722@blimpo.internal.net> <[🔎] 20020321053930.GA12689@snoopy.apana.org.au> <[🔎] 20020327004655.GF19032@blimpo.internal.net> <[🔎] 20020327010653.GA7441@snoopy.apana.org.au> <[🔎] 20020327012334.GH19032@blimpo.internal.net> <[🔎] 20020327015217.GB7441@snoopy.apana.org.au> <[🔎] 20020327022101.GJ19032@blimpo.internal.net>

On Tue, Mar 26, 2002 at 09:21:01PM -0500, Ben Collins wrote:
> By the time your example gets to checking sigs, the depends have already
> been figured and things have been downloaded by apt, and are trying to
> be installed. It's too late at that point to reject a package you don't
> want, given that it successfully meets the signature criteria. Apt-get
> already has mechanism to control what packages from which sources you
> want to take into account.

I assume the Release file will be signed?

(ie. the file that is used for checking in /etc/apt/preferences?)

If so, this may be another alternative.

If not, then any criteria you set in /etc/apt/preferences can
be faked by changing the details in the downloaded Release file.
-- 
Brian May <bam@debian.org>


-- 
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: debsigs
  - From: Ben Collins <bcollins@debian.org>

References:
- Re: ITI: HTTPS method for apt
  - From: Paolo Redaelli <paolo.redaelli@libero.it>
- Re: ITI: HTTPS method for apt
  - From: Florian Weimer <Weimer@CERT.Uni-Stuttgart.DE>
- Re: ITI: HTTPS method for apt
  - From: Brian May <bam@debian.org>
- Re: ITI: HTTPS method for apt
  - From: Ben Collins <bcollins@debian.org>
- Re: debsigs
  - From: Brian May <bam@debian.org>
- Re: debsigs
  - From: Ben Collins <bcollins@debian.org>
- Re: debsigs
  - From: Brian May <bam@debian.org>
- Re: debsigs
  - From: Ben Collins <bcollins@debian.org>
- Re: debsigs
  - From: Brian May <bam@debian.org>
- Re: debsigs
  - From: Ben Collins <bcollins@debian.org>

Prev by Date: Re: /etc/mailname
Next by Date: Re: ITP: mencal -- A menstruation calendar
Previous by thread: Re: debsigs
Next by thread: Re: debsigs
Index(es):
- Date
- Thread