> > > > The problem is that Microsoft can cryptographically sign their > > packages whereas Redhat cannot (unless they use a NSA certified, > > closed-source system to do it). > > > > Digital signatures are essential for any live update system like > > this. > > > > Actually, RedHat can, and do, sign their packages. They just can't > distribute the software you need to verify the signatures; you have to > download it yourself... > > sorry for my ignorance, but aren't PGP signatures included in every RPM ? I think when you are installing the rpm the rpm verifies the signature. I am missing something ? Is GnuPG the solution of the US export-control problems ? regards, Benno. -- To unsubscribe: mail -s unsubscribe [EMAIL PROTECTED] < /dev/null
- future Redhat security-patches updating policy ? Benno Senoner
- Re: future Redhat security-patches updating policy... Joerg Mertin
- Re: future Redhat security-patches updating policy... Simon Epsteyn
- Re: future Redhat security-patches updating policy... Chris Abbey
- Re: future Redhat security-patches updating po... Benno Senoner
- Re: future Redhat security-patches updating policy... rsk
- Re: future Redhat security-patches updating po... Damien Miller
- Re: future Redhat security-patches updatin... H. Peter Anvin
- Re: future Redhat security-patches upd... Benno Senoner
- Re: future Redhat security-patche... Chris Abbey
- Re: future Redhat security-pa... H. Peter Anvin
- Re: future Redhat securit... Matt Wilson
- Re: future Redhat securit... Chris Abbey
- Re: future Redhat securit... John Summerfield
- Re: future Redhat securit... Bill Nottingham
- Update Agent Riyad Kalla
- Re: future Redhat securit... Edward S. Marshall
- Re: future Redhat securit... Alan Cox
- Re: future Redhat securit... JF Martinez
