On Wed, Dec 05, 2007 at 07:02:03PM -0800, Claus Assmann wrote: > On Wed, Dec 05, 2007, STeve Andre' wrote: > > On Wednesday 05 December 2007 18:22:19 Claus Assmann wrote: > > > > Someone actually did the former with sendmail.org (to distribute a > > > version of sendmail with a backdoor). The problem was only noted > > > because users checked the (digital) signature. > > > You know, you're descending into a recursive loop of "if, if, if..." and > > it never ends. OF COURSE if someone breaks into the site they could > > do things--once you've lost control of your site all bets are off. I dare > ^^^^^^^^^^^^^^^^ > > Hmm, did you read what I wrote? > > The breakin was detected due to the digital signature. > > > Anyway, it's obviously up to the OpenBSD developers what they do.
Code signing has it's use, but it does not come for free. It's quite involved. As always, the key problem is key management, not the signing itself. As an illustration, read what I wrote when similar questions came up 5 years ago, and dont forget Dug Song's answer to my post. <http://marc.info/?l=openbsd-misc&m=103769360002468&w=2> -Otto
