Re: client-side signature checking of Debian archives

To: debian-devel@lists.debian.org
Subject: Re: client-side signature checking of Debian archives
From: Kristian Erik Hermansen <kristian.hermansen@gmail.com>
Date: Sun, 23 Oct 2016 16:21:38 -0700
Message-id: <[🔎] CAPgP4gzhY0ui0vA2tfZ8kLH2VuXrFPUEP1TZF2GLckaYAoN2TQ@mail.gmail.com>
In-reply-to: <[🔎] 87lgxf3qo4.fsf_-_@violet.siamics.net>
References: <[🔎] CAPgP4gxcptXTNcEFb5Jf+SkAYPWSuXwRVAoiqmABG_+gDCdGYw@mail.gmail.com> <[🔎] 580CC7E3.2030301@debian.org> <[🔎] CAPgP4gwkkfhsfUMzGqT6AWqFnL7u2dazBvbj1ZPTpjQy0WTQeA@mail.gmail.com> <[🔎] 580CED6C.8070206@debian.org> <[🔎] 87lgxf3qo4.fsf_-_@violet.siamics.net>

On Sun, Oct 23, 2016 at 10:45 AM, Ivan Shmakov <ivan@siamics.net> wrote:
>         use TLS /alongside/ the usual Debian/APT signatures – not
>         instead of them; and the primary goal is to improve user’s
>         privacy.  That is: only the mirror operator will remain
>

Exactly right. The point is to improve privacy. Integrity of packages
is not directly vulnerable unless more APT / GPG / parsing
vulnerabilities are identified publicly (NSA surely has some
privately). HTTPS+HPKP doesn't make anything weaker and actually would
also help limit those unknown parsing vectors outlined previously.

-- 
Regards,

Kristian Erik Hermansen
https://www.linkedin.com/in/kristianhermansen

Reply to:

Follow-Ups:
- Re: client-side signature checking of Debian archives
  - From: Paul Wise <pabs@debian.org>

References:
- Re: When should we https our mirrors?
  - From: Kristian Erik Hermansen <kristian.hermansen@gmail.com>
- client-side signature checking of Debian archives (Re: When should we https our mirrors?)
  - From: "Eugene V. Lyubimkin" <jackyf@debian.org>
- Re: client-side signature checking of Debian archives (Re: When should we https our mirrors?)
  - From: Kristian Erik Hermansen <kristian.hermansen@gmail.com>
- Re: client-side signature checking of Debian archives (Re: When should we https our mirrors?)
  - From: "Eugene V. Lyubimkin" <jackyf@debian.org>
- Re: client-side signature checking of Debian archives
  - From: Ivan Shmakov <ivan@siamics.net>

Prev by Date: Re: When should we https our mirrors?
Next by Date: Re: client-side signature checking of Debian archives
Previous by thread: Re: client-side signature checking of Debian archives
Next by thread: Re: client-side signature checking of Debian archives
Index(es):
- Date
- Thread