Quoting Michael Gold (mg...@qnx.com): > On Mon, Aug 29, 2011 at 19:55:38 +0100, Miguel Figueiredo wrote: > > > I wanted to install Debian unstable, but there are no cryptographic > > > signatures on the unstable installer snapshots, so I installed the > > > newest stable release and upgraded. > > > > [...] > > > > The daily images, and the checksums, can be found on: > > http://cdimage.debian.org/cdimage/daily-builds/daily/arch-latest/amd64/iso-cd/ > > Thanks, but those checksums have little security value since they're not > cryptographically signed.
Patches welcome. Apart from that, daily images are used...daily...but gazillion of testers for about 8 years now. So, well, it's your call to decide if that's secure enough for you. After all, they mostly use packages....from the official Debian archives and these *are* cryptographically signed. If you're paranoid about this, I would recommend using the daily netboot image. It downloads everything it installs on your target machine, from the network, on authenticated archives.
signature.asc
Description: Digital signature
