| 1 |
On Thursday 01 August 2002 15:39, Rob Kaper wrote: |
| 2 |
> On Thursday 01 August 2002 15:35, Terje Kvernes wrote: |
| 3 |
> > if the checksum differ, which it would have, emerge will abort. |
| 4 |
> > although, emerge logs do sound like a very good idea. |
| 5 |
> |
| 6 |
> For optimum security, emerge should check checksums from different |
| 7 |
> locations. One or two trusted servers (often even the same as the one where |
| 8 |
> the files reside, although that might not be true for gentoo) can be |
| 9 |
> compromised too easily. |
| 10 |
|
| 11 |
if this should be a option in portage, we always need to download two files |
| 12 |
from two servers to check if the md5sum are the same... :-( |
| 13 |
IMO it is good as it is. the gentoo-core team are providing a md5sum in the |
| 14 |
portage tree and that should be enough. |
| 15 |
|
| 16 |
regards |
| 17 |
hanez... ;-) |
| 18 |
|
| 19 |
-- |
| 20 |
begin .signature |
| 21 |
question: is it a feature to execute code in emails? |
| 22 |
i don't think so! |
| 23 |
end |
Archives