[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Guix and remote trust

From: Christopher Baines
Subject: Re: Guix and remote trust
Date: Thu, 12 Dec 2019 16:55:41 +0000
User-agent: mu4e 1.2.0; emacs 26.3

Pierre Neidhardt <address@hidden> writes:

> I am wondering whether Guix can still provide more guarantees than
> non-functional package managers / OS when running on a remote machine
> (controlled by an non-trusted third-party) with, say, SSH root access.
> For instance, can we somehow have the guarantee that the remote machine
> is the Guix we installed and hasn't been tampered with?
> I'm not sure whether I'm asking something trivial or not.  If the
> latter, I'd be happy to read more literature about it.
> What do you people know on the topic?

This sounds like guix gc --verify=contents. Debian has a similar feature
I think, with dpkg --verify.

Attachment: signature.asc
Description: PGP signature

reply via email to

[Prev in Thread] Current Thread [Next in Thread]