Home > mailing lists

Re: PGP signing releases - Mailing list pgsql-hackers

From	Greg Copeland
Subject	Re: PGP signing releases
Date	February 3, 2003 16:30:58
Msg-id	1044296653.2788.55.camel@mouse.copelandconsulting.net Whole thread Raw
In response to	Re: PGP signing releases ("Marc G. Fournier" <scrappy@hub.org>)
Responses	Re: PGP signing releases
List	pgsql-hackers

Tree view

On Sun, 2003-02-02 at 20:23, Marc G. Fournier wrote:

> right, that is why we started to provide md5 checksums ...

md5 checksums only validate that the intended package (trojaned or
legit) has been properly received.  They offer nothing from a security
perspective unless the checksums have been signed with a key which can
be readily validated from multiple independent sources.

Regards,

-- 
Greg Copeland <greg@copelandconsulting.net>
Copeland Computer Consulting

pgsql-hackers by date:

From: Katie Ward
Date: 03 February 2003, 15:54:08
Subject: Re: Win32 Technical Questions

From: Rod Taylor
Date: 03 February 2003, 16:39:29
Subject: Re: Win32 Powerfail testing - results

Re: PGP signing releases - Mailing list pgsql-hackers

Previous

Next