Full Disclosure mailing list archives
Re: [OT] Re: Knocking Microsoft
From: Cedric Blancher <blancher () cartel-securite fr>
Date: Sat, 28 Feb 2004 19:08:05 +0100
Le sam 28/02/2004 à 10:31, Martin Mačok a écrit :
% apt-get update && apt-get upgrade % apt-get install apache-sslWill it transfer the data in a secure way? (SSL?)
What's the point securing publicly available data transfer with SSL ? The only thing that is important regarding to security for remote software installation and/or upgrade is archive authentication and integrity check after reception so one can avoid trojaned stuff.
Will it verify the data after being downloaded? (PGP signature?)
Can be configured to do so. BTW, sadly, by default, only MD5 is checked. -- http://www.netexit.com/~sid/ PGP KeyID: 157E98EE FingerPrint: FA62226DA9E72FA8AECAA240008B480E157E98EE
Hi! I'm your friendly neighbourhood signature virus. Copy me to your signature file and help me spread!
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- [OT] Re: Knocking Microsoft, (continued)
- [OT] Re: Knocking Microsoft Robert Brockway (Feb 27)
- Re: [OT] Re: Knocking Microsoft Paul Schmehl (Feb 27)
- Re: [OT] Re: Knocking Microsoft martin f krafft (Feb 28)
- Re: [OT] Re: Knocking Microsoft Martin Mačok (Feb 28)
- Re: [OT] Re: Knocking Microsoft Rui Miguel Seabra (Feb 28)
- Re: [OT] Re: Knocking Microsoft bryce (Feb 28)
- secure downloading of patches (Re: Knocking Microsoft) Martin Mačok (Feb 28)
- Re: secure downloading of patches (Re: Knocking Microsoft) Cedric Blancher (Feb 29)
- Re: secure downloading of patches (Re: Knocking Microsoft) Martin Mačok (Feb 29)
- Re: secure downloading of patches (Re: Knocking Microsoft) Cedric Blancher (Feb 29)
- Re: [OT] Re: Knocking Microsoft Paul Schmehl (Feb 27)
- [OT] Re: Knocking Microsoft Robert Brockway (Feb 27)
- Re: [OT] Re: Knocking Microsoft Cedric Blancher (Feb 28)
- Re: [OT] Re: Knocking Microsoft Tim (Feb 28)
- Re: [OT] Re: Knocking Microsoft Paul Schmehl (Feb 29)
- OT: Re: Knocking Microsoft gadgeteer (Feb 27)
- Re: OT: Re: Knocking Microsoft Valdis . Kletnieks (Feb 27)
- Re: OT: Re: Knocking Microsoft gadgeteer (Feb 27)
- Re: Re: Knocking Microsoft Troy Solo (Feb 27)
- Re: Re: Knocking Microsoft madsaxon (Feb 27)
- Re: Re: Knocking Microsoft Luís Bruno (Feb 28)