[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Debian should move away from MD5 (and at best also from SHA1) (in secure APT and friends)

On Mon, Oct 15, 2012 at 02:58:15AM +0200, Christoph Anton Mitterer wrote:
> > """
> > debsums is intended primarily as a way of determining what installed files
> > have been locally modified by the administrator or damaged by media errors
> > and is of limited use as a security tool.
> > 
> > If you are looking for an integrity checker that can run from safe media,
> > do integrity checks on checksum databases and can be easily configured to
> > run periodically to warn the admin of changes see other tools such as:
> > aide, integrit, samhain, or tripwire.
> > """
> I never claimed (and already explicitly said that before) that it was
> intended to be used for that,... or that I would do or recommend so...
I never said you did.


Attachment: signature.asc
Description: Digital signature

Reply to: