Re: Revival of the signed debs discussion

To: Matt Zimmerman <mdz@debian.org>
Cc: debian-devel@lists.debian.org
Subject: Re: Revival of the signed debs discussion
From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>
Date: 05 Dec 2003 14:28:01 +0100
Message-id: <[🔎] 87ptf3bdi6.fsf@mrvn.homelinux.org>
In-reply-to: <[🔎] 20031205161053.GI582@dijkstra.csh.rit.edu>
References: <[🔎] 20031202144535.GA18163@kitenet.net> <[🔎] E1ARDy4-0000m0-LO@mid.downhill.at.eu.org> <[🔎] 20031202194241.GC22593@kitenet.net> <[🔎] 87fzg2hcx6.fsf@mrvn.homelinux.org> <[🔎] 20031203023731.GA582@dijkstra.csh.rit.edu> <[🔎] 87ptf6focp.fsf@mrvn.homelinux.org> <[🔎] 20031203190216.GH582@dijkstra.csh.rit.edu> <[🔎] 87u14hcpac.fsf@mrvn.homelinux.org> <[🔎] 20031204164750.GG582@dijkstra.csh.rit.edu> <[🔎] 87fzg0dv54.fsf@mrvn.homelinux.org> <[🔎] 20031205161053.GI582@dijkstra.csh.rit.edu>

Matt Zimmerman <mdz@debian.org> writes:

> On Fri, Dec 05, 2003 at 12:24:07AM +0100, Goswin von Brederlow wrote:
> 
> > Matt Zimmerman <mdz@debian.org> writes:
> > 
> > > Release signing protects against a hostile or compromised mirror,
> > > network, DNS server, proxy server, and a host of other, similar attacks,
> > > and also prevents most forms of the "substitute old, vulnerable
> > > packages" attack.
> > 
> > Any compromise happening before the package left ftp-master.d.o is not
> > covered by this. That means that if master is compromised a vulnerable
> > binary can be slipped into the archive and nothing will detect it.
> 
> So the only real-world attack which is addressed by signed debs is an
> ftp-master compromise?  This is the only answer you have given to my
> original question.

And its a lasting signature.

Currently you can't check the debs in your apt-cache if they are a bit
older. And you can't check snapshot.debian.net for compromises.

MfG
        Goswin

Reply to:

References:
- Re: Revival of the signed debs discussion
  - From: Joey Hess <joeyh@debian.org>
- Re: Revival of the signed debs discussion
  - From: Andreas Metzler <ametzler@downhill.at.eu.org>
- Re: Revival of the signed debs discussion
  - From: Joey Hess <joeyh@debian.org>
- Re: Revival of the signed debs discussion
  - From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>
- Re: Revival of the signed debs discussion
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Revival of the signed debs discussion
  - From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>
- Re: Revival of the signed debs discussion
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Revival of the signed debs discussion
  - From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>
- Re: Revival of the signed debs discussion
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Revival of the signed debs discussion
  - From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>
- Re: Revival of the signed debs discussion
  - From: Matt Zimmerman <mdz@debian.org>

Prev by Date: Re: Building Debian Completely From Source
Next by Date: Re: Debian packages and freedesktop.org (Gnome, KDE, etc) menu entries
Previous by thread: Re: Revival of the signed debs discussion
Next by thread: Re: Revival of the signed debs discussion
Index(es):
- Date
- Thread