[Psi-devel] OT: CACert included in Kubuntu?
Hal Rottenberg
halr9000 at gmail.com
Thu Nov 30 15:36:04 PST 2006
On 11/30/06, Justin Karneges <justin-psi2 at affinix.com> wrote:
> So yeah, GPG is a perfectly fair way to do secure package downloading. The
> other way would be to use X.509 without the official root CAs. I would
> recommend either of these approaches in any situation where all parties
> involved are "known", not just for package management.
And the Windows equivalent would be to X.509 sign the installer
package and other executables themselves.
--
Psi webmaster (http://psi-im.org)
im:hal at jabber.rocks.cc
http://halr9000.com
More information about the psi-devel
mailing list