On Tue, 22 Feb 2005 17:54:32 +0100, markus reichelt <ml@xxxxxxxxxxxx> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Paul Walker <paul@xxxxxxxxxxxxxxxxxxxxx> wrote:
> > > this. in general, relying on packages made by others when it comes to
> > > security stuff isn't very smart.
Does you know the Debian policy about package maintainers? I don't
think so. EVERY package is signed by a gpg key of its maintainer;
EVERY package is analysed an have a bugtracksystem on-line in
bugs.debian.org; EVERY package only gets the testing after some time
in unstable, EVERY package is available by the Debian Quality
Assurance [qa.debian.org], .. etc, etc. The GNU/Debian System is not
only a GNU/Linux distro, it is even more than this.
See by yourserlf the gpg key in the loop-aes-utils:
bash$ apt-get source loop-aes-utils
bash$ cat loop-aes-utils_2.12p-2.dsc
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.0
Source: loop-aes-utils
Version: 2.12p-2
Binary: loop-aes-utils
Maintainer: Max Vozeler <max@xxxxxxxxxxxxx>
Architecture: any
Standards-Version: 3.6.1
Build-Depends: debhelper (>= 4.0.0), dpatch (>= 2.0.0), libblkid-dev, uuid-dev
Uploaders: Eduard Bloch <blade@xxxxxxxxxx>
Files:
d47e820f6880c21c8b4c0c7e8a7376cc 2001658 loop-aes-utils_2.12p.orig.tar.gz
46f37b9da0b504d2f88c7f6a8131ad7b 69098 loop-aes-utils_2.12p-2.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
iD8DBQFB5W6g4QZIHu3wCMURAmRNAJ9L0ZUD3l877xhm46cnqmi1NzKxPgCcDJdq
ovei6fl8+rVSUpKSAgbwi6o=
=QDhd
-----END PGP SIGNATURE-----
bash$
Best Regards,
Rodrigo Ferreira Baroni
--
"...but if is something that can help the world, the peoples, we must
not retain to ourselves."
[Richard Stallman, Free Software Foundation President]
-
Linux-crypto: cryptography in and on the Linux system
Archive: http://mail.nl.linux.org/linux-crypto/
