Gentoo Archives: gentoo-dev

From:	"Andreas K. Huettel" <dilfridge@g.o>
To:	gentoo-dev@l.g.o
Subject:	Re: [gentoo-dev] Tree signing and verification on the user side - status?
Date:	Tue, 04 Apr 2017 10:04:11
Message-Id:	`3732996.eZhrT7fONQ@pinacolada`
In Reply to:	[gentoo-dev] Tree signing and verification on the user side - status? by "Andreas K. Huettel"

1	>
2	> while we're discussing super-strength hash algos, it would be cool to know
3	> what's still missing for
4	> * rsync-side manifest signing in whatever way
5	> * verification of such signatures in portage / emerge
6	>
7
8	(and just to put it in a reference frame, I'm these days reading mailing list
9	discussions how cryptographic signing of our rsync tree is urgently needed...
10	... in the council agenda threads
11	... of the very first council
12	... i.e., 2005
13	... i.e., roughly 12 years ago.)
14
15	--
16	Andreas K. Hüttel
17	dilfridge@g.o
18	Gentoo Linux developer (council, perl, libreoffice)

File name	MIME type
signature.asc	application/pgp-signature

Subject	Author
Re: [gentoo-dev] Tree signing and verification on the user side - status?	Dirkjan Ochtman <djc@g.o>