Re: Debian audititing tool?
Peter Cordes wrote:
> I think a signed database of stuff that's supposed to be in Debian, and a
> decent way to make a bootable CD that downloads what it needs, and checks
> what's on your drive, is a good start. If the MD5 sum lists are signed, you
> don't need to trust the server you download them from.
That's the reason why the Gibraltar firewall (Debian based) runs
directly from a bootable CD-ROM. You only need to protect your
configuration, but you don't need to worry about your binaries.