[wpkg-users] security issues

Daniel Dehennin daniel.dehennin at ac-caen.fr
Tue Jun 5 10:37:24 CEST 2007


Marco Gaiarin <gaio at sv.lnf.it> writes:

> 3) [complex, strong] use a PKI infrastructure where alla communication
> (clearly, usefoul one) are 'signed' with public keys.

Why not just having packages signed by a certificate trusted by
clients ?

Client download packages, verify the signature and install if it's ok.

Setting up a local certificate authority, deploying it on clients and
sign packages is not so hard IMHO.

Regards.
-- 
Daniel Dehennin
RAIP de l'Orne


wpkg-users mailing list
wpkg-users at lists.wpkg.org
http://lists.wpkg.org/mailman/listinfo/wpkg-users



More information about the wpkg-users mailing list