Re: RFC: Consequences of redesign of .deb signatures

To: debian-dpkg@lists.debian.org
Cc: debian-devel@lists.debian.org
Subject: Re: RFC: Consequences of redesign of .deb signatures
From: Richard Lewis <richard.lewis.debian@googlemail.com>
Date: Tue, 02 Sep 2025 13:37:09 +0100
Message-id: <[🔎] 86y0qxvxmy.fsf@simplex.rtf.org.uk>
Mail-followup-to: debian-dpkg@lists.debian.org
References: <[🔎] aLWCMreHqC_RGcSI@thunder.hadrons.org>

Guillem Jover <guillem@debian.org> writes:

> The current support for .deb signatures (as implemented by debsigs
> and debsig-verify, which dpkg can be configured to call by disabling
> the «no-debsig» configuration option), has multiple limitations.

>  whether current features/misdesigns would disappear which are being
> relied on).

i think the answer might be no, but; do system checkers like debsums,
rkhunter, tiger, aide, tripwire etc do any checks using signatures?

(chkrootkit and checksecurity would not care)

Reply to:

References:
- RFC: Consequences of redesign of .deb signatures
  - From: Guillem Jover <guillem@debian.org>

Prev by Date: Re: RFC: Consequences of redesign of .deb signatures
Next by Date: Re: Removing dpkg arch definitions for kopensolaris-any?
Previous by thread: Re: RFC: Consequences of redesign of .deb signatures
Next by thread: Re: Extending ar format to support large member sizes
Index(es):
- Date
- Thread