Re: Revival of the signed debs discussion

To: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>
Cc: Thomas Viehmann <tv@beamnet.de>, Debian Devel <debian-devel@lists.debian.org>
Subject: Re: Revival of the signed debs discussion
From: John Goerzen <jgoerzen@complete.org>
Date: Mon, 1 Dec 2003 22:10:41 -0600
Message-id: <[🔎] 20031202041041.GA1434@complete.org>
In-reply-to: <[🔎] 87wu9gj576.fsf@mrvn.homelinux.org>
References: <[🔎] 8765h0mzk1.fsf@mrvn.homelinux.org> <[🔎] 3FCB50A2.90907@beamnet.de> <[🔎] 20031201161124.GA21059@complete.org> <[🔎] 87wu9gj576.fsf@mrvn.homelinux.org>

On Tue, Dec 02, 2003 at 03:58:53AM +0100, Goswin von Brederlow wrote:
> John Goerzen <jgoerzen@complete.org> writes:
> 
> PS: Does debsigs just sign the control and data file or all files in
> the ar? What if we add some more files at some point (like a
> _buildinfo)?

It cats the control and data files together and signs the result.
Otherwise, an attacker could mix and match control and data files from
different .debs (as long as the files aren't modified) and still cause
havoc.

BTW, there is a design doc in /usr/share/doc/debsigs that describes some
of these things.

-- John

Reply to:

References:
- Revival of the signed debs discussion
  - From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>
- Re: Revival of the signed debs discussion
  - From: Thomas Viehmann <tv@beamnet.de>
- Re: Revival of the signed debs discussion
  - From: John Goerzen <jgoerzen@complete.org>
- Re: Revival of the signed debs discussion
  - From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>

Prev by Date: Re: apt-rpm article -- the features we don't have
Next by Date: Re: [custom] Debian Enterprise - a Custom Debian Distribution
Previous by thread: Re: Revival of the signed debs discussion
Next by thread: Re: Revival of the signed debs discussion
Index(es):
- Date
- Thread