Re: Trust in the Debian Build Process
Marc Singer <firstname.lastname@example.org> writes:
>...read errors on the system drive corrupt system binaries until
>unexplained errors are noticed by the operator.
>The first step to a solution is to sign or checksum the system
>binaries. ITO that this is quite easy. I'm planning to start with a
>checksum, test it, and then add signing.
Doesn't the debsums package do most of this already?
- Jim Van Zandt
Maintainer: Christoph Lameter <email@example.com>
Description: Tools to handle md5sums for installed packages
This package contains instructions and the tools for having packages
generate md5sums for all their files as also done by the debstd
script of debmake. The package also contains a script to generate
md5sum files for debian packages which do not install an md5sum
file. The md5sum will be generated after the package is installed by
The package also allows comparing the md5sums in a .deb file with the
current installed files by extracting the md5sums file from the .deb