Peter Cordes wrote: > I think a signed database of stuff that's supposed to be in Debian, and a > decent way to make a bootable CD that downloads what it needs, and checks > what's on your drive, is a good start. If the MD5 sum lists are signed, you > don't need to trust the server you download them from. That's the reason why the Gibraltar firewall (Debian based) runs directly from a bootable CD-ROM. You only need to protect your configuration, but you don't need to worry about your binaries. http://www.gibaltar.at/
best greets, Rene
