Re: are md5sums mandatory for all packages?

To: Debian Policy <debian-policy@lists.debian.org>
Subject: Re: are md5sums mandatory for all packages?
From: Manoj Srivastava <srivasta@datasync.com>
Date: 19 Dec 1997 14:38:13 -0600
Message-id: <[🔎] 87u3c5ukzu.fsf@tiamat.datasync.com>
In-reply-to: Joost Kooij's message of "Fri, 19 Dec 1997 16:08:52 +0100 (CET)"
References: <[🔎] Pine.LNX.3.96.971219154713.209G-100000@pc47.mpn.cp.philips.com>

Hi,

	All right, I think I a beginning to agree. Maybe dpkg *should
 have integrity checking (as well as permission and ownership being
 recorded record [in the .list file maybe?] -- like a ls -al listing)

	If per file mdsums are to be recorded, then maybe hte too
 should be pgp-signed (possibly by dpkg at package build time,
 possibly a detached signature).

	manoj 
-- 
 "Sometimes you have to be a harsh cookie editor." Karl
Manoj Srivastava  <srivasta@acm.org> <http://www.datasync.com/%7Esrivasta/>
Key C7261095 fingerprint = CB D9 F4 12 68 07 E4 05  CC 2D 27 12 1D F5 E8 6E

Reply to:

Follow-Ups:
- Re: are md5sums mandatory for all packages?
  - From: Fabrizio Polacco <fpolacco@icenet.fi>

References:
- Re: are md5sums mandatory for all packages?
  - From: Joost Kooij <kooij@mpn.cp.philips.com>

Prev by Date: Re: Rationale for /etc/init.d/* being conffiles?
Next by Date: Re: Rationale for /etc/init.d/* being conffiles?
Previous by thread: another use of md5sums
Next by thread: Re: are md5sums mandatory for all packages?
Index(es):
- Date
- Thread