[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: PREVIEW: bsign embeds hash and/or digital signature in ELF files

On Mon, Dec 14, 1998 at 12:40:46AM +0100, Wichert Akkerman wrote:
> This sounds like a very usefull tool which can be used as an alternative
> to tripwire.

Erm, if someone has access to change the binarys then it is no problem
to also change the signature in said binarys..

tripwire is basicly useless if its not on a hardware level read-only
device, and I don't see how binarys having the signature in them is
secure if one can change the binarys, which, if they can't do, there is
little reason to use the signatures for security..

Now, the signatures, checked through some outside (non writable) source,
do look like a very nice idea.. (=:]

Zephaniah E, Hull.
> Wichert.
> -- 
> ==============================================================================
> This combination of bytes forms a message written to you by Wichert Akkerman.
> E-Mail: wakkerma@cs.leidenuniv.nl
> WWW: http://www.wi.leidenuniv.nl/~wichert/

 PGP EA5198D1-Zephaniah E, Hull <warp@whitestar.soark.net>-GPG E65A7801
    Keys available at http://whitestar.soark.net/~warp/public_keys.
           CCs of replies from mailing lists are encouraged.

Attachment: pgpM4FzYxX39E.pgp
Description: PGP signature

Reply to: