[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Official Debian digital 'branding' of debs

Hi,
>>"Goswin" == Goswin Brederlow <goswin.brederlow@student.uni-tuebingen.de> writes:

 Goswin> Its a build demon building those, so you have to export the pgp
 Goswin> password, which is realy unsafe on a networed system.

        A build demaon is automatically insecure. (think about it --
 if putting a key on the machine is insecure, which you recognize, how
 is an automatic build suddenly secure?)

        Humans are important watchdogs in secure systems. Any purely
 automatic system, unless extreme care is taken, is vulnerable.

        manoj
-- 
 Cobol programmers are down in the dumps.
Manoj Srivastava   <srivasta@debian.org>  <http://www.debian.org/%7Esrivasta/>
Key C7261095 fingerprint = CB D9 F4 12 68 07 E4 05  CC 2D 27 12 1D F5 E8 6E
Reply to: