Re: [Reproducible-builds] concrete steps for improving apt downloading security and privacy

To: debian-security@lists.debian.org
Subject: Re: [Reproducible-builds] concrete steps for improving apt downloading security and privacy
From: Hans-Christoph Steiner <hans@at.or.at>
Date: Thu, 25 Sep 2014 00:24:59 -0400
Message-id: <[🔎] 5423991B.5010503@at.or.at>
In-reply-to: <[🔎] 20140925035052.GA20936@fama>
References: <201407221617.47375.holger@layer-acht.org> <[🔎] 541B8750.603@at.or.at> <[🔎] CAKTje6EGFXcOpT3K7C2imneW4FPxnypwQfNUMjuLZ3=k1pFh8w@mail.gmail.com> <[🔎] 541C005D.2010404@gmail.com> <[🔎] 541C2CC5.8000406@fifthhorseman.net> <541C5597.3030905@guardianproject.info> <541C5C47.3000308@fifthhorseman.net> <541C7A58.2070105@guardianproject.info> <541C812F.209@fifthhorseman.net> <[🔎] 54238694.6030606@guardianproject.info> <[🔎] 20140925035052.GA20936@fama>

W. Martin Borgert wrote:
> On 2014-09-24 23:05, Hans-Christoph Steiner wrote:
>> * the signature files sign the package contents, not the hash of
>>   whole .deb file (i.e. control.tar.gz and data.tar.gz).
> 
> So preinst and friends would not be signed? Sounds dangerous to me.

All package contents would be signed, except the signature itself.  The
signature would be a separate file in the ar archive of the .deb that signs
control.tar.gz and data.tar.gz. See jar or apk format for an example of how
this works.

.hc

Reply to:

References:
- Re: concrete steps for improving apt downloading security and privacy
  - From: Hans-Christoph Steiner <hans@at.or.at>
- Re: concrete steps for improving apt downloading security and privacy
  - From: Paul Wise <pabs@debian.org>
- Re: concrete steps for improving apt downloading security and privacy
  - From: Elmar Stellnberger <estellnb@gmail.com>
- Re: [Reproducible-builds] concrete steps for improving apt downloading security and privacy
  - From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
- Re: [Reproducible-builds] concrete steps for improving apt downloading security and privacy
  - From: Hans-Christoph Steiner <hans@guardianproject.info>
- Re: [Reproducible-builds] concrete steps for improving apt downloading security and privacy
  - From: "W. Martin Borgert" <debacle@debian.org>

Prev by Date: Re: [Reproducible-builds] concrete steps for improving apt downloading security and privacy
Next by Date: AW: [SECURITY] [DSA 3032-1] bash security update
Previous by thread: Re: [Reproducible-builds] concrete steps for improving apt downloading security and privacy
Next by thread: RE: [SECURITY] [DSA 3025-2] apt regression update
Index(es):
- Date
- Thread