Bug#413070: notes on security
Hi.
May I suggest in advance:
If you download stuff from the web (e.g. the truecrypt sources) that
get somhow installed,.. you really should add some hashsums checking
(SHA512) and abort package installation (or creation) if the sums
don't match with the ones shipped with your package (and probably warn
the user about a potential security incident).
Best wishes,
Chris
----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.
Reply to: