Automated update distribution - was: RE: [Esa-l] Files to poison: Hybris

John D. Hardin jhardin at
Thu Dec 14 06:39:35 PST 2000

On Wed, 13 Dec 2000, R P Herrold wrote:

> > > There doesn't need to be a single, central server (thought that'd
> > > probably be nice).
> >
> > I'll be providing a basic form of that when the new sanitizer is
> > released.
> ... One concern, John -- if folks are proposing to
> auto-install code from a cronned FTP process, there should
> probably be a md5sum, and signing of that sum with
> public/private key pair for a given release, to permit
> automated authentication, using for example, gpg -- otherwise,
> one is open to a DNS forging attack ... in that the filter is
> running in the root account, this would have disasterous
> consequenes. ...

Good idea - I'll see what I can come up with.

 John Hardin KA7OHZ   ICQ#15735746
 jhardin at      pgpk -a finger://
  768: 0x41EA94F5 - A3 0C 5B C2 EF 0D 2C E5  E9 BF C8 33 A7 A9 CE 76 
 1024: 0xB8732E79 - 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
  "Bother," said Pooh as he struggled with /etc/, "it never
  does quite what I want. I wish Christopher Robin was here."
				-- Peter da Silva in a.s.r
   11 days until we celebrate Christmas by killing millions of trees

More information about the esd-l mailing list