can apt check multiple package sums during install ?
Hi,
Given the recent incidence of trojaning of sources of some
applications, I wondered whether it was possible to get apt-get to
download the list of package checksums from multiple debian ftp servers
and only install a package if the sum matched in package files from
multiple servers, thus reducing the chances that someone could replace a
package on one server and modify its corresponding sum.
Thoughts oh great one ?
Dave
---------------- Have a happy GNU millennium! ----------------------
/ Dr. David Alan Gilbert | Running GNU/Linux on Alpha,68K| Happy \
\ gro.gilbert @ treblig.org | MIPS,x86,ARM, SPARC and HP-PA | In Hex /
\ _________________________|_____ http://www.treblig.org |_______/
Reply to: