Re: Secrecy and user trust

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "Community assistance, encouragement, and advice for using Fedora." <fedora-list@xxxxxxxxxx>
Subject: Re: Secrecy and user trust
From: Bill Davidsen <davidsen@xxxxxxx>
Date: Sat, 06 Sep 2008 16:59:56 -0400
In-reply-to: <48C14701.2080303@xxxxxxxxxxxxx>
References: <48BD6B95.9030401@xxxxxxx><544eb990809020927i313cba2bnf449e6737e67728e@xxxxxxxxxxxxxx><48BD6CE5.3060303@xxxxxxxxx><544eb990809020951o5270a862n461d2fb4f5c78f27@xxxxxxxxxxxxxx><48BD7C8E.9050505@xxxxxxx><20080902135544.4sgel1t94c0sco84-zeznkk@xxxxxxxxxxxxxxxxxxx><48BDA778.3020002@xxxxxxxxx> <20080902210444.GE3924@xxxxxxxxxxxxxxxxxxxxx><g9m66m$mae$1@xxxxxxxxxxxxx><1220467367.10774.12.camel@xxxxxxxxxxxxxxxxxx><48BF593E.8050105@xxxxxxx> <1220534670.15676.24.camel@xxxxxxxxxxxxxxxxxx> <F165C1C33B254E16A14142DAA70FC6D6@wednesday> <48C14701.2080303@xxxxxxxxxxxxx>
Reply-to: "Community assistance, encouragement, and advice for using Fedora." <fedora-list@xxxxxxxxxx>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.16) Gecko/20080716 Fedora/1.1.11-1.fc9 SeaMonkey/1.1.11

Mike McCarty wrote:

jdow wrote:

If this can be done once in an initial install situation it can be done
again in an update situation using the same mechanism.


One way is to download the stuff from Red Hat's site itself,
and trust that no one has managed to intercept your communications.

Actually you don't need "the stuff" other than the new key, do you? Andthe sha1sum (or even sha256sum) of the key and the ISO install image.Once you have that you can trust the mirrors, because even if someonecan corrupt a mirror it will be detected. And a list of checksums forall packages released against FC[89] so I can check my archived RPMsagainst it.

That should restore the level of trust present for any previous Fedorarelease.


--
Bill Davidsen <davidsen@xxxxxxx>
  "We have more to fear from the bungling of the incompetent than from
the machinations of the wicked."  - from Slashdot

--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
Guidelines: http://fedoraproject.org/wiki/Communicate/MailingListGuidelines

Follow-Ups:
- Re: Secrecy and user trust
  - From: Mike McCarty

References:
- Secrecy and user trust
  - From: Bill Davidsen
- Re: Secrecy and user trust
  - From: Bill Crawford
- Re: Secrecy and user trust
  - From: Les Mikesell
- Re: Secrecy and user trust
  - From: Bill Crawford
- Re: Secrecy and user trust
  - From: Bill Davidsen
- Re: Secrecy and user trust
  - From: John Aldrich
- Re: Secrecy and user trust
  - From: Travis Arnold
- Re: Secrecy and user trust
  - From: Anders Karlsson
- Re: Secrecy and user trust
  - From: Bill Davidsen
- Re: Secrecy and user trust
  - From: Patrick O'Callaghan
- Re: Secrecy and user trust
  - From: Bill Davidsen
- Re: Secrecy and user trust
  - From: Patrick O'Callaghan
- Re: Secrecy and user trust
  - From: jdow
- Re: Secrecy and user trust
  - From: Mike McCarty

Prev by Date: Re: Script Test [OT]
Next by Date: Re: Secrecy and user trust
Previous by thread: Re: Secrecy and user trust
Next by thread: Re: Secrecy and user trust
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]

Powered by Linux