Re: Trust in the Debian Build Process

To: Thomas Roessler <roessler@guug.de>
Cc: Debian-Devel <debian-devel@lists.debian.org>
Subject: Re: Trust in the Debian Build Process
From: Marc Singer <elf@netcom.com>
Date: Sat, 28 Nov 1998 15:01:34 -0800
Message-id: <[🔎] 19981128150134.A10693@netcom8.netcom.com>
In-reply-to: <[🔎] 19981116142900.B19100@sobolev.rhein.de>; from Thomas Roessler on Mon, Nov 16, 1998 at 01:30:17PM -0000
References: <[🔎] 19981116142900.B19100@sobolev.rhein.de>

[deletia]

I have been working on a program to do this.  My concern has been a
little different, but it tends to solve the same problem.  I have been
observing the failure modes for GNU/Linux machines for a couple of
years.  The current wisdom leans toward implementing RAID to cope with
hardware failures.  If one drive goes kaput, the mirror or raid copes
by filling in for the non-functioning drive.  Unfortunately, the
primary failure mode is *not* catastrophic hardware failure.  Instead,
read errors on the system drive corrupt system binaries until
unexplained errors are noticed by the operator.  

The first step to a solution is to sign or checksum the system
binaries.  ITO that this is quite easy.  I'm planning to start with a
checksum, test it, and then add signing.

Reply to:

Follow-Ups:
- Re: Trust in the Debian Build Process
  - From: Jim Pick <jim@jimpick.com>

References:
- Trust in the Debian Build Process
  - From: Thomas Roessler <roessler@guug.de>

Prev by Date: Re: XFree86-3.3.3 has been released
Next by Date: Re: Cobalt Qube
Previous by thread: Re: Trust in the Debian Build Process
Next by thread: Re: Trust in the Debian Build Process
Index(es):
- Date
- Thread