Marco Gaiarin <gaio at sv.lnf.it> writes: > 3) [complex, strong] use a PKI infrastructure where alla communication > (clearly, usefoul one) are 'signed' with public keys. Why not just having packages signed by a certificate trusted by clients ? Client download packages, verify the signature and install if it's ok. Setting up a local certificate authority, deploying it on clients and sign packages is not so hard IMHO. Regards. -- Daniel Dehennin RAIP de l'Orne wpkg-users mailing list wpkg-users at lists.wpkg.org http://lists.wpkg.org/mailman/listinfo/wpkg-users |