gnu-arch-users
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Gnu-arch-users] (fairly minor) SECURITY ISSUE


From: Andrew Suffield
Subject: Re: [Gnu-arch-users] (fairly minor) SECURITY ISSUE
Date: Wed, 21 Jan 2004 15:23:08 +0000
User-agent: Mutt/1.5.5.1+cvs20040105i

On Tue, Jan 20, 2004 at 11:18:34AM -0800, Tom Lord wrote:
> .check files in ~/.arch-params/signing need to be revised.
> 
> Anyone care to suggest the best revision?

gpg --no-verbose --batch --quiet --output - -

And have tla use the data it receives on stdout as the checksum list,
rather than the raw contents of the file. This also protects you
against escaping in the clearsigned region.

-- 
  .''`.  ** Debian GNU/Linux ** | Andrew Suffield
 : :' :  http://www.debian.org/ |
 `. `'                          |
   `-             -><-          |

Attachment: signature.asc
Description: Digital signature


reply via email to

[Prev in Thread] Current Thread [Next in Thread]