Cryptographically enabled ports tree.
Colin Percival
colin.percival at wadham.ox.ac.uk
Sat Jun 21 18:29:25 PDT 2003
At 18:18 21/06/2003 -0700, David Schultz wrote:
>We already have MD5 checksums of each port, so all it takes is to
>have so@ sign a MAC for the entire ports tree.
Yes, I'm sure the security officers would be delighted to login and
enter a PGP passphrase every time someone commits something to the ports
tree. ;)
> Now doing
>something more sophistocated and seamless would be a little bit
>more effort...
What we need is something integrated into the CVS system which rebuilds
the necessary signatures every time the ports tree is modified, and commits
those into the CVS tree. Any CVS experts around who could say how to do this?
Colin Percival
More information about the freebsd-chat
mailing list