On Wed, May 31, 2006 at 22:37:39 +0930, Tim <ignored_mailbox@xxxxxxxxxxxx> wrote: > I've just been reading some rather silly things about gnupg except for > one practical point: Who has actually checked the source code for it to > see whether it's trustworthy, etc? > > And, of course, the next thing would be: Who would they be that we > could trust them, too? After a bit of Googling around, I'm darned if I > can find out, nor think of the right terms to search for. gnupg is much less likely to have an intentional back door than anything you get from a corporation. > Naturally, this extends to other open-source programs. Which ones do > get vetted? The openbsd guys do security audits of programs. -- fedora-list mailing list fedora-list@xxxxxxxxxx To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list