Re: ensuring integrity of sources (was: [arch-dev-public] todo list for moving http -> https sources)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: arch-general@xxxxxxxxxxxxx
Subject: Re: ensuring integrity of sources (was: [arch-dev-public] todo list for moving http -> https sources)
From: Eli Schwartz via arch-general <arch-general@xxxxxxxxxxxxx>
Date: Mon, 31 Oct 2016 19:59:59 -0400
Cc: Eli Schwartz <eschwartz93@xxxxxxxxx>
In-reply-to: <20161031233541.GA8672@takahe.colorado.edu>
Reply-to: General Discussion about Arch Linux <arch-general@xxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (X11; Linux i686; rv:45.0) Gecko/20100101 Thunderbird/45.4.0

On 10/31/2016 07:35 PM, Leonid Isaev wrote:
> Regarding checksums, how did a dev know that upstream sources are authentic?

Personally, I check the upstream sources of stuff I publish to the AUR.
I maintain an additional *-git package for anything that makes sense
that way, so it is easy to diff/log.

-- 
Eli Schwartz

References:
- ensuring integrity of sources (was: [arch-dev-public] todo list for moving http -> https sources)
  - From: Patrick Burroughs (Celti)
- Re: ensuring integrity of sources (was: [arch-dev-public] todo list for moving http -> https sources)
  - From: Levente Polyak
- Re: ensuring integrity of sources (was: [arch-dev-public] todo list for moving http -> https sources)
  - From: Leonid Isaev
- Re: ensuring integrity of sources (was: [arch-dev-public] todo list for moving http -> https sources)
  - From: Eli Schwartz via arch-general
- Re: ensuring integrity of sources (was: [arch-dev-public] todo list for moving http -> https sources)
  - From: Leonid Isaev

Prev by Date: Re: ensuring integrity of sources (was: [arch-dev-public] todo list for moving http -> https sources)
Next by Date: Re: ensuring integrity of sources (was: [arch-dev-public] todo list for moving http -> https sources)
Previous by thread: Re: ensuring integrity of sources (was: [arch-dev-public] todo list for moving http -> https sources)
Next by thread: Re: ensuring integrity of sources (was: [arch-dev-public] todo list for moving http -> https sources)
Index(es):
- Date
- Thread

[Index of Archives] [Linux Wireless] [Linux Kernel] [ATH6KL] [Linux Bluetooth] [Linux Netdev] [Kernel Newbies] [Share Photos] [IDE] [Security] [Git] [Netfilter] [Bugtraq] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Linux ATA RAID] [Samba] [Device Mapper]