[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Digital Signatures
First, I have to question the necessity of digital signatures for
OpenBSD in the first place. If you don't trust what you download
from the 'Net, buy a CD. Problem solved.
But, if there is a need for signatures, it would seem that a
self-signed OpenSSL CA certificate included with the CD would
solve all the ``Web o' Trust'' issues.
As for the ease of use, it'd be trivial to write a quick script to
call openssl to either sign or verify a distribution file. There's
no reason it needs to be more than a single command (and maybe a
passphrase) for anybody.
[demime 0.98d removed an attachment of type application/pgp-signature]