From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-security-return-1630-arch-gentoo-security=gentoo.org@lists.gentoo.org>
Received: (qmail 9195 invoked from network); 10 Nov 2004 14:25:11 +0000
Received: from smtp.gentoo.org (156.56.111.197)
  by lists.gentoo.org with AES256-SHA encrypted SMTP; 10 Nov 2004 14:25:11 +0000
Received: from lists.gentoo.org ([156.56.111.196] helo=parrot.gentoo.org)
	by smtp.gentoo.org with esmtp (Exim 4.41)
	id 1CRtPL-0006G9-38
	for arch-gentoo-security@lists.gentoo.org; Wed, 10 Nov 2004 14:25:11 +0000
Received: (qmail 22430 invoked by uid 89); 10 Nov 2004 14:24:48 +0000
Mailing-List: contact gentoo-security-help@gentoo.org; run by ezmlm
Precedence: bulk
List-Post: <mailto:gentoo-security@gentoo.org>
List-Help: <mailto:gentoo-security-help@gentoo.org>
List-Unsubscribe: <mailto:gentoo-security-unsubscribe@gentoo.org>
List-Subscribe: <mailto:gentoo-security-subscribe@gentoo.org>
List-Id: Gentoo Linux mail <gentoo-security.gentoo.org>
X-BeenThere: gentoo-security@gentoo.org
Received: (qmail 22964 invoked from network); 10 Nov 2004 14:24:47 +0000
Date: Wed, 10 Nov 2004 09:24:45 -0500
From: Chris Frey <cdfrey@netdirect.ca>
To: gentoo-security@lists.gentoo.org
Message-ID: <20041110092445.A16159@netdirect.ca>
References: <20041110020620.F1ADE2B3DB@smtp.istop.com> <20041109233509.A19723@netdirect.ca> <41919EC1.5010809@awry.ws> <20041110135202.GQ10927@mail.lieber.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5.1i
In-Reply-To: <20041110135202.GQ10927@mail.lieber.org>; from klieber@gentoo.org on Wed, Nov 10, 2004 at 01:52:02PM +0000
Subject: [gentoo-security] Re: The solution and hopefully the end.
X-Archives-Salt: d77661cc-8307-46d2-9f5d-cde23af49a6a
X-Archives-Hash: 13e7c45b9c686fd0a7343cf6d1577f85

On Wed, Nov 10, 2004 at 01:52:02PM +0000, Kurt Lieber wrote:
> The original fix suggested won't work for a number of reasons that I'm not
> going to bother to re-hash here.  I did suggest an alternate solution that
> I think is going to work and Peter has agreed to write the code to
> implement it.
[snip]
> This thread has gone on long enough.  The
> solution that's been agreeed upon is signing the daily snapshots that we
> provide for users who can't use rsync.  (/snapshots directory on your
> favorite source mirror)

Fantastic idea!  If you need help writing or testing this script, you guys
know where to find me. :-)  I'm not a python guru, but the main script
shouldn't need much more than bash.

Thanks,
- Chris


--
gentoo-security@gentoo.org mailing list