Re: [PLUG] trusting linux packages

sean finney on 9 Dec 2009 14:33:38 -0800

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] trusting linux packages

From: sean finney <seanius@seanius.net>

To: gregsonh@gra-inc.com, Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>

Subject: Re: [PLUG] trusting linux packages

Date: Wed, 9 Dec 2009 23:33:27 +0100

Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>

Sender: plug-bounces@lists.phillylinux.org

User-agent: Mutt/1.5.20 (2009-06-14)

On Wed, Dec 09, 2009 at 03:12:42PM -0500, Greg Helledy wrote: > Repositories where someone takes responsibility for what's there, like > backports.org and debian-multimedia.org are (hopefully?) very different > from sites where "sk8-237" just uploaded his cool new screensaver, and > none of the other 2 users who've tried it have posted any complaints. also note that both backports and debian-multimedia are signed repositories, i.e. you can (a) verify that the packages are genuine and not modified by someone other than the signer, and (b) inspect *who* the signer is, to see if he/she is someone you want to trust with root privilege on your box. sean
Attachment: signature.asc
Description: Digital signature

___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug

Follow-Ups:

Re: [PLUG] trusting linux packages
From: Art Alexion <arthur@alexion.com>

References:

[PLUG] trusting linux packages
From: Greg Helledy <gregsonh@gra-inc.com>

Prev by Date: [PLUG] Google DNS...?

Next by Date: Re: [PLUG] Google DNS...?

Previous by thread: [PLUG] trusting linux packages

Next by thread: Re: [PLUG] trusting linux packages

Index(es):

Date

Thread