On 03/02/2021 21:50, Ramin Doe wrote:
> It's not entirely clear to me what the CIS guideline was expecting me to
> do. It says:
>
> Verify GPG keys are configured correctly for your package manager:
> # apt-key list
>
> Perhaps they want me to install apt-key, and use it to look at the
Hi,
On 28/01/2021 19:08, Ramin Doe wrote:
> "Currently there are two different implementations for signing
> individual packages..."
> I think this is referring to the GPG signature verification mechanisms
> that are disabled by default. I'm happy to not try to not go down the
> route of enabling
On 12/12/2017 16:25, t...@tomputer.nl wrote:
> Hello,
>
> I just noticed that my Debian Wheezy server is missing a few Digicert
> Root certificates:
>
>
> Wheezy:
> * DigiCert_Assured_ID_Root_CA.crt
> * DigiCert_Global_Root_CA.crt
> * DigiCert_High_Assurance_EV_Root_CA.crt
>
> Jessie:
> * DigiC
On 03/12/2017 12:40, Holger Levsen wrote:
> On Sun, Dec 03, 2017 at 12:05:51PM +0100, Bastian Blank wrote:
>>> in practice, this also has obvious flaws.
>> Please elaborate.
>
> for a start: one only needs to compromise one machine instead of many...
>
>>>
Le 12/08/2016 à 17:46, Jakub Wilk a écrit :
> * Salvatore Bonaccorso , 2016-08-12, 17:35:
>> mitigation could be used as per https://lwn.net/Articles/696868/ .
>
> This is behind paywall at the moment. The relevant part appears to be:
>
>> there is a mitigation available in the form of the
>> tcp
5 matches
Mail list logo
