Re: HTTPS needs to be implemented for updating

To: debian-security@lists.debian.org
Subject: Re: HTTPS needs to be implemented for updating
From: Marc Haber <mh+debian-security@zugschlus.de>
Date: Wed, 21 Dec 2016 09:58:19 +0100
Message-id: <[🔎] 20161221085819.GV2865@torres.zugschlus.de>
In-reply-to: <[🔎] 87y3z9bs4k.fsf@delenn.ganneff.de>
References: <[🔎] 70591121.1271659.1482005903177.JavaMail.zimbra@unseen.is> <[🔎] 20161218110340.GA1611@elch.exwg.net> <[🔎] 0f0e3a88-c9fd-50bd-1338-1fbcc5975198@bitjungle.info> <[🔎] CAHzNyaCD5AcxkZkDFcSPfgc8YbM3ZxFDX6iJHku-okbvCHMxUw@mail.gmail.com> <[🔎] 1482271674@msgid.manchmal.in-ulm.de> <[🔎] 87y3z9bs4k.fsf@delenn.ganneff.de>

On Wed, Dec 21, 2016 at 09:31:23AM +0100, Joerg Jaspert wrote:
> Now, if you want to manually download a .deb and dpkg -i it - then you
> have to manually do the same steps apt & co do: Get the corresponding
> packages and (In)Release files, verify its signature validates against
> the archive key, then verify the checksum of the Packages and then the
> .deb file. If you don't follow this, you lost, but you asked for it.

Do we have a tool that does this kind of verification of a locally
present .deb automatically?

Greetings
Marc

-- 
-----------------------------------------------------------------------------
Marc Haber         | "I don't trust Computers. They | Mailadresse im Header
Leimen, Germany    |  lose things."    Winona Ryder | Fon: *49 6224 1600402
Nordisch by Nature |  How to make an American Quilt | Fax: *49 6224 1600421

Reply to:

Follow-Ups:
- Re: HTTPS needs to be implemented for updating
  - From: Christoph Biedl <debian.axhn@manchmal.in-ulm.de>

References:
- HTTPS needs to be implemented for updating
  - From: gwmfms06@unseen.is
- Re: HTTPS needs to be implemented for updating
  - From: Christoph Moench-Tegeder <cmt@burggraben.net>
- Re: HTTPS needs to be implemented for updating
  - From: datanoise <datanoise@bitjungle.info>
- Re: HTTPS needs to be implemented for updating
  - From: Casper Thomsen <ct@clearhaus.com>
- Re: HTTPS needs to be implemented for updating
  - From: Christoph Biedl <debian.axhn@manchmal.in-ulm.de>
- Re: HTTPS needs to be implemented for updating
  - From: Joerg Jaspert <joerg@debian.org>

Prev by Date: Re: HTTPS needs to be implemented for updating
Next by Date: Re: HTTPS needs to be implemented for updating
Previous by thread: Re: HTTPS needs to be implemented for updating
Next by thread: Re: HTTPS needs to be implemented for updating
Index(es):
- Date
- Thread