Re: RFC: gpg signed web pages

To: David Mandelberg <mandelbergd@eth0.is-a-geek.org>
Cc: debian-www <debian-www@lists.debian.org>
Subject: Re: RFC: gpg signed web pages
From: Wouter Verhelst <wouter@debian.org>
Date: Mon, 17 Jan 2005 16:09:39 +0100
Message-id: <[🔎] 1105974579.7983.37.camel@country.grep.be>
In-reply-to: <[🔎] 41EBCF19.8090807@eth0.is-a-geek.org>
References: <[🔎] 41EBCF19.8090807@eth0.is-a-geek.org>

Op ma, 17-01-2005 te 09:43 -0500, schreef David Mandelberg:
> What do you (the list) think about signing all the web pages by putting detached
> armored signatures in files something like <page-filename>.asc and then having a
> header that specifies the location (e.g. X-OpenPGP-Signature:
> http://www.debian.org/index.en.html.asc)?
> 
> That would help decrease the chance of somebody breaking into one of the servers
> (most importantly security.debian.org) and defacing the web pages.

No it wouldn't; at least not if either the server or a client would
check the signature before displaying it, which is unlikely to ever
happen.

-- 
         EARTH
     smog  |   bricks
 AIR  --  mud  -- FIRE
soda water |   tequila
         WATER
 -- with thanks to fortune

Reply to:

Follow-Ups:
- Re: RFC: gpg signed web pages
  - From: David Mandelberg <mandelbergd@eth0.is-a-geek.org>

References:
- RFC: gpg signed web pages
  - From: David Mandelberg <mandelbergd@eth0.is-a-geek.org>

Prev by Date: RFC: gpg signed web pages
Next by Date: Processed: Bug #289410: www.debian.org: not a typo
Previous by thread: RFC: gpg signed web pages
Next by thread: Re: RFC: gpg signed web pages
Index(es):
- Date
- Thread