[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] RE: 'On my Soap Box'
- Subject: Re: [cobalt-security] RE: 'On my Soap Box'
- From: Mark Anderson <cronus@xxxxxx>
- Date: Tue, 13 Mar 2001 11:34:41 GMT
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
> your site reminded me that cobalt does not publish the md5sums
> for its pkg files on the website. Being super-ultra paranoid
> like myself, this extra layer of verification would be a welcome
> addition.
I'd just like to point out that if the cobalt distribution server
was comprimised and the pkg files were tampered with, its a fair
assumption that the webpage would be altered to reflect the new
altered MD5 sums.