Re: Stronger Hashes for PKGBUILDs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: General Discussion about Arch Linux <arch-general@xxxxxxxxxxxxx>
Subject: Re: Stronger Hashes for PKGBUILDs
From: Maxwell Anselm via arch-general <arch-general@xxxxxxxxxxxxx>
Date: Sat, 3 Dec 2016 14:07:10 -0500
Cc: Maxwell Anselm <silverhammermba@xxxxxxxxx>
In-reply-to: <7f6dbf2f-b465-d699-fa1f-961d7197059c@web.de>
Reply-to: General Discussion about Arch Linux <arch-general@xxxxxxxxxxxxx>

>
> I agree that we should use a strong hash by default where it makes
> sense. But in the absense ob effective validation of upstream packages,
> this is meaningless.
>

It would at least indicate that the source file has been tampered with in
some way. Even though there would be no way to know the "correct" checksum.

Follow-Ups:
- Re: Stronger Hashes for PKGBUILDs
  - From: sivmu

References:
- Stronger Hashes for PKGBUILDs
  - From: fnodeuser
- Re: Stronger Hashes for PKGBUILDs
  - From: sivmu

Prev by Date: Re: Stronger Hashes for PKGBUILDs
Next by Date: Re: After upgrade
Previous by thread: Re: Stronger Hashes for PKGBUILDs
Next by thread: Re: Stronger Hashes for PKGBUILDs
Index(es):
- Date
- Thread

[Index of Archives] [Linux Wireless] [Linux Kernel] [ATH6KL] [Linux Bluetooth] [Linux Netdev] [Kernel Newbies] [Share Photos] [IDE] [Security] [Git] [Netfilter] [Bugtraq] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Linux ATA RAID] [Samba] [Device Mapper]

Powered by Linux