Re: concrete steps for improving apt downloading security and privacy

To: debian-security@lists.debian.org
Subject: Re: concrete steps for improving apt downloading security and privacy
From: Paul Wise <pabs@debian.org>
Date: Tue, 15 Jul 2014 00:59:58 +0800
Message-id: <[🔎] CAKTje6GMCuzzrmcQqEaLtO-Sj4yBW42T3fKJXXbXbxc282UB5w@mail.gmail.com>
In-reply-to: <[🔎] 53C40932.4070002@at.or.at>
References: <[🔎] 53B6150A.3000602@at.or.at> <[🔎] CACJnc4hN93PJHuWm_GU-sXASW-65OaDtNJL6jH0gumqbyLsv8Q@mail.gmail.com> <[🔎] 53C40446.8010309@at.or.at> <[🔎] CAKTje6Fk+8zDHmQRsqYLDe0ABAb8q2OMrnRmvyhp2OyYFe=wbQ@mail.gmail.com> <[🔎] 53C40932.4070002@at.or.at>

On Tue, Jul 15, 2014 at 12:45 AM, Hans-Christoph Steiner wrote:

> I'd like to contribute to this effort

First thing is to get #733029 fixed, which involves disabling signing
by default (signing should be done after testing not before) and
adding a signing tool to dpkg-dev. Then debsign/debuild need adapting
to the new default and the new signing tool. Then you can modify the
dpkg signing tool to sign .deb files using code from the old stuff and
convince the dpkg maintainers to accept it. Somewhere in there the old
approaches/code should be looked at, checked if they still work and
the old documentation and external websites (some of them only on
archive.org) and mailing list discussions.

-- 
bye,
pabs

https://wiki.debian.org/PaulWise

Reply to:

Follow-Ups:
- Re: concrete steps for improving apt downloading security and privacy
  - From: Hans-Christoph Steiner <hans@at.or.at>

References:
- concrete steps for improving apt downloading security and privacy
  - From: Hans-Christoph Steiner <hans@at.or.at>
- Re: concrete steps for improving apt downloading security and privacy
  - From: Kitty Cat <realizar.la.paz@gmail.com>
- Re: concrete steps for improving apt downloading security and privacy
  - From: Hans-Christoph Steiner <hans@at.or.at>
- Re: concrete steps for improving apt downloading security and privacy
  - From: Paul Wise <pabs@debian.org>
- Re: concrete steps for improving apt downloading security and privacy
  - From: Hans-Christoph Steiner <hans@at.or.at>

Prev by Date: Re: concrete steps for improving apt downloading security and privacy
Next by Date: Re: concrete steps for improving apt downloading security and privacy
Previous by thread: Re: concrete steps for improving apt downloading security and privacy
Next by thread: Re: concrete steps for improving apt downloading security and privacy
Index(es):
- Date
- Thread