Package: debmirror
Version: 20041209
Severity: wishlist

Checking the integrity of the mirror is nice, and trying to check the
signature on the archive is laudable. However, the latter has by default
no real security, rather, it provides a false sense of security, as the
only thing that is done is verifying the signature against the public
keyring. This way, anybody with a key in your public keyring, or anybody
at all if you auto-retrieve keys, can still tamper with the archive
without debmirror noticing.

Checking against tampering without either especially configuring which
keys to trust or providing a good way to have debmirror do this for you
brings you no real security, and therefore, I think it's best to not gpg
check by default, just make it a an option with a specific keyring, so
that if one wants to verify, that's possible at the expense of
maintaining a keyring with 'allowed' keys. You can have debmirror look
in /etc/debmirror/archive_keys.pub or $HOME/.debmirror/archive_keys.pub
for example, and use the gpg checking ability if that exists.

--Jeroen

-- System Information:
Debian Release: 3.1
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.7
Locale: LANG=nl_NL.UTF-8, LC_CTYPE=nl_NL.UTF-8 (charmap=UTF-8)

Versions of packages debmirror depends on:
ii  bzip2                         1.0.2-1    A high-quality block-sorting file 
ii  libcompress-zlib-perl         1.33-3     Perl module for creation and manip
ii  liblockfile-simple-perl       0.2.5-4    Simple advisory file locking
ii  libnet-perl                   1:1.19-1   Implementation of Internet protoco
ii  libwww-perl                   5.800-2    WWW client/server library for Perl
ii  perl [libdigest-md5-perl]     5.8.4-5    Larry Wall's Practical Extraction 
ii  perl-modules [libnet-perl]    5.8.4-5    Core Perl modules
ii  rsync                         2.6.3-2    fast remote file copy program (lik

-- no debconf information

-- 
Jeroen van Wolffelaar
[EMAIL PROTECTED]
http://jeroen.A-Eskwadraat.nl


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Reply via email to