Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
Time for Open-Source to Grow Up
Jon Lasser, 2002-08-07

The OpenSSH backdoor demonstrates that the community must get pragmatic about package verification, and fast.

Submit Comment Mode:
Name:
Subject:
Message:
 
  Enter the characters that appear above
 
Stick to PGP 2002-08-11
Anonymous
I check PGP signatures.

Any responsible sysadmin will validate a package, and PGP is not difficult to use in that regard. Sysadmins who download packages and don't verify them should "grow up".

Honestly, I wouldn't even know how to validate the certificates you talk about. PGP is fairly straig...

[ more ]  




 

Privacy Statement
Copyright 2009, SecurityFocus