Re: Trust in the Debian Build Process
Marc Singer <firstname.lastname@example.org> writes:
> The first step to a solution is to sign or checksum the system
> binaries. ITO that this is quite easy. I'm planning to start with a
> checksum, test it, and then add signing.
Klee Dienes did the same thing with his dpkgcert package - I used his
certificates once to do some fixing up after some IDE corruptions
Andreas Jellinghaus <email@example.com> has just written something
which does something similar - but I haven't tried it yet.