Encryption, paranoia and virtual machines

Neil Watson tlug-neil-8agRmHhQ+n2CxnSzwYWP7Q at public.gmane.org
Fri Nov 25 18:14:57 UTC 2011


On Fri, Nov 25, 2011 at 12:13:31PM -0500, Alex Volkov wrote:
>* You don't need to keep files in /bin secret all you need is to
>verify that they were downloaded from your vendor and weren't tampered
>with, there's a security term describing this situation,
>confidentiality vs. integrity? Every major distribution has tools for
>checking that.

I'm actually cooking something up with Cfengine to do that.  Rather than
just warning about a changed binary Cfengine will also repair the
seemingly damaged file with a copy from a master source.

-- 
Neil Watson
Linux/UNIX Consultant
http://watson-wilson.ca
--
The Toronto Linux Users Group.      Meetings: http://gtalug.org/
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists





More information about the Legacy mailing list