MITM attacks against portsnap and freebsd-update
Royce Williams
royce at tycho.org
Sat Apr 12 16:27:16 UTC 2014
On Sat, Apr 12, 2014 at 8:06 AM, Tom Evans <tevans.uk at googlemail.com> wrote:
[snip]
> issues to solve there. In a non license constrained world, the problem
> of "how do I replicate these files from here to there" is universally
> solved by rsync. Would a freebsd-update tool that required the rsync
Don't portsnap and freebsd-update use cryptographic signing as well?
When used to update software, signing seems like a big win over vanilla rsync.
Royce
More information about the freebsd-hackers
mailing list