Hi, I've spent a few hours searching, what Im looking for is a discussion of different security aspects of apt, questions like - What are the possible threats in terms of ip spoofing, dns cache poisoning? (are there any solutions in terms of PKI (PGP) or similar discussed somewhere?) - If I need to automate a large site, is mirroring/proxying everything in sources.list and manually controlling this as a filter to the rest of the site the best solution? (assuming I can control cache poisoning attacks on my local network)
I found some interesting disussion on adding 3-party sites on http://cert.uni-stuttgart.de/archive/debian/security/2004/01/msg00116.html and something also sort of related http://cert.uni-stuttgart.de/archive/debian/security/2003/09/msg00283.html any pointers to material which may be relevant are greatly appreciated /Erik
