Intrusion Detection using pkg?
Matthew Seaman
matthew at FreeBSD.org
Mon Apr 18 11:00:59 UTC 2016
On 2016/04/18 11:43, Vsevolod Stakhov wrote:
> I don't like this idea: if an attacker has enough power to modify files
> on FS why he or she cannot do the same for checksums in pkg database? We
> need digital signatures and password protected private key. Then a user
> can type something like:
Uh, yes. That's pretty much exactly what I'm suggesting.
> pkg sign <- enter private key password
>
> followed by:
>
> pkg sign --check to verify the existing checksums
This user interface would work for me.
> Unfortunately, after years of useless discussion we have no sane
> signatures scheme in pkg, and I have no desire to continue these
> discussions I'm afraid.
I believe the current package signature stuff serves its purpose, which
is to verify that the package tarball in question originated from an
identified and trusted source and hasn't subsequently been tampered
with. Which is fine, but there's a definite use-case for going further...
Cheers,
Matthew
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 972 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/freebsd-pkg/attachments/20160418/406e988d/attachment.sig>
More information about the freebsd-pkg
mailing list