Re: Packages and signatures

To: debian-devel@lists.debian.org
Subject: Re: Packages and signatures
From: Matt Zimmerman <mdz@debian.org>
Date: Sat, 27 Jan 2001 02:41:54 -0500
Message-id: <[🔎] 20010127024151.K19317@alcor.net>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20010127035529.C23700@debian.org>; from nick@debian.org on Sat, Jan 27, 2001 at 03:55:29AM -0300
References: <[🔎] 01011819481401.00676@neo> <[🔎] 87itnc1q9f.fsf@mose.informatik.uni-tuebingen.de> <[🔎] 20010118234810.C1214@debian.org> <[🔎] 20010121191524.A1119@cistron.nl> <[🔎] 20010122232158.D1477@debian.org> <[🔎] 20010123035429.A30198@lina.inka.de> <[🔎] 20010126165546.R5539@cistron.nl> <[🔎] 20010127035529.C23700@debian.org>

On Sat, Jan 27, 2001 at 03:55:29AM -0300, Nicolás Lichtmaier wrote:

> > > The impact of a key is larger (good or bad) because it can be verified AFTER
> > > the files LEFT ftp-master. (And all of them leave FTP-MASTER before the
> > > ARRIVE at the user).
> > 
> > And it affects all packages instead of a strict subset.
> 
>  Compromising dinstall code compromises all packages, not a strict subset.

No, it only affects packages currently on Debian mirrors, and once the
compromise is fixed, things return to normal.  If a trusted key were stolen, it
could be used to sign packages and distribute them anywhere, and it is much
harder to revoke a key from every Debian system than to repair a single system
intrusion.

Also, once the key is revoked, older packages (e.g., from previous releases)
signed by that key can no longer be verified.

-- 
 - mdz

Reply to:

Follow-Ups:
- Re: Packages and signatures
  - From: Nicolás Lichtmaier <nick@debian.org>
- Re: Packages and signatures
  - From: JP Sugarbroad <taral@taral.net>

References:
- Secure apt-get
  - From: Klaus Reimer <kay@debian.org>
- Re: Secure apt-get
  - From: Goswin Brederlow <goswin.brederlow@student.uni-tuebingen.de>
- Packages and signatures
  - From: Nicolás Lichtmaier <nick@debian.org>
- Re: Packages and signatures
  - From: Wichert Akkerman <wichert@cistron.nl>
- Re: Packages and signatures
  - From: Nicolás Lichtmaier <nick@debian.org>
- Re: Packages and signatures
  - From: Bernd Eckenfels <lists@lina.inka.de>
- Re: Packages and signatures
  - From: Wichert Akkerman <wichert@valinux.com>
- Re: Packages and signatures
  - From: Nicolás Lichtmaier <nick@debian.org>

Prev by Date: Re: Install and RAID
Next by Date: Re: LILO in TESTING broken!
Previous by thread: Re: Packages and signatures
Next by thread: Re: Packages and signatures
Index(es):
- Date
- Thread