On Fri, Dec 11, 2015 at 11:58:17AM +0100, Thijs van Dijk wrote:
On 11 December 2015 at 05:51, Andy Bradford <amb-open...@bradfords.org>
wrote:
If one wants privacy on a website then more is required than just HTTPS.
Right. *I* just want a reasonable (256-bit) guarantee that the signify keys
on my screen are the ones the OpenBSD authors intended me to see.
The official CD set contains the signify keys for that release and the
next one. Once you have a known good copy of one set, you can always obtain
future ones securely.
You don't even need to use the CD set to install, just as a way of obtaining
the signify keys with a high degree of confidence.
--
Tati Chevron
Perl and FORTRAN specialist.
SWABSIT development and migration department.
http://www.swabsit.com
