Re: Verify the integrity of downloaded archives

All of lore.kernel.org
 help / color / mirror / Atom feed

From: James de Lurker <jtl2nospamMUNGIEjump@hotmail.com>
To: SELinux@tycho.nsa.gov
Subject: Re: Verify the integrity of downloaded archives
Date: Thu, 06 Nov 2003 22:54:18 +0000	[thread overview]
Message-ID: <3FAAD11A.9030608@hotmail.com> (raw)
In-Reply-To: <1068128683.4355.37.camel@moss-spartans.epoch.ncsc.mil>

Stephen Smalley wrote:

> On Thu, 2003-11-06 at 01:11, Bill Laut wrote:

[..]

>>SELinux gains a wider audience it would be reasonable to anticipate the 
>>distro eventually getting mirrored at other sites.

It already is! I frequently use the "Wiretapped" Australian site as a
convenient place that centralises security related stuff. Recommended.

   ftp://ftp.wiretapped.net/pub/security/operating-systems/selinux/
   http://www.wiretapped.net/

>>.............................................  Since the use of digital 
>>signatures as an integrity-check is now commonplace within the Linux 
>>community, would it be reasonable to start posting signatures on the NSA 
>>website?

A list of MD5s against files, itself wrapped in a digital signature would 
be extremely useful. Authentication is nice, to eliminate the possible of
MiM attacks on ftp delivery ( or directly compromised ftp services, as has
already happened, with some key open source applications ).

For the most part, integrity checking against accidental damage rather than 
malicious tampering is needed. Even better - "par" Reed Solomon matrix
error correction files in the file groups are a great way of checking 
against storage media degradation. Fix the damage rather than only detect
it after downloading a particularly large archive file, or ISO image.

    http://parchive.sourceforge.net/

[..]
>...........On the other hand, on what basis would you trust the key used
> to sign the archives and patches?
> 

Not perfect, but a "Web of Trust" that incorporated contributors I've met.
Russell, to name but one. A separate "site key" that had such authority,
with appropriate disclaimers for the NSA's purposes of course... Reasonably 
confident that a suitable exchange protocol could be established by private
email from the regulars that have met in person, to make remote key signing
exchanges of a site signature key viable.

How does that sound?

-- 

   -- James

 From and Reply To are INVALID.

All public postings use munged headers[1]- To contact me off list:
   1) Remove "M U N G I E j u m p" ONLY: leave that "nospam" in there!
   2) change "hotmail" 2 "myrealbox" after the @

--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

next prev parent reply	other threads:[~2003-11-06 22:54 UTC|newest]

Thread overview: 15+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2003-11-05 20:26 Verify the integrity of downloaded archives sMoTo
2003-11-06  6:11 ` Bill Laut
2003-11-06 14:24   ` Stephen Smalley
2003-11-06 22:15     ` Dean Anderson
2003-11-07  0:35       ` Brian May
2003-11-07  6:05         ` Verify the integrity of downloads Operations Staff
2003-11-08 22:08           ` Russell Coker
2003-11-11  1:05             ` Dean Anderson
2003-11-12 23:54               ` Russell Coker
2003-11-13  0:10                 ` Howard Holm
2003-11-14 21:59                 ` Dean Anderson
2003-11-14 22:31                   ` Howard Holm
2003-11-06 22:54     ` James de Lurker [this message]
2003-11-07 18:13     ` Verify the integrity of downloaded archives Bill Laut
2003-11-08 22:16     ` Russell Coker

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=3FAAD11A.9030608@hotmail.com \
    --to=jtl2nospammungiejump@hotmail.com \
    --cc=SELinux@tycho.nsa.gov \
    --cc=see.the.sig.2.reply.by.email.offlist@hotmail.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.