Re: apt and multiple connections
I wrote:
> Because when you get the file from a multiple places, you add the
> requirement of checking the file for consistancy and errors. A crc or
> md5sum check is needed, both before the transfer (is it the _SAME_ file,
> or just one the same size and date?) and after (did we put it back
> together correctly?)
Thomas wrote:
> > People should be doing this *anyway* as part of the signature checking
> > that should be standard in Debian.
On Sun, 24 Sep 2000, Jason Gunthorpe wrote:
> It is already done transparently by APT.
Jason, since you're the author of the apt documentation, I believe you,
but I just reread everything in /usr/share/doc/apt and didn't see any
documentation for this so I grabbed the source and browsed.
MD5 and size checks _are_ done, but not pgp/gpg signature checking...
Where does it do this? Or were you refering to the other checks?
I _have_ learned (thank the source) that apt already does do enough
checking the way I was concerned in my initial paragraph at the top. So
Never Mind, as Emily Latella would say....
thanks,
Seth
Reply to: