Netscape finally issuing md5sums/pgp signed binaries ? (was Re: NetScape's dependence upon RSA down for the count!)
Jeff Weinstein
jsw at neon.netscape.com
Mon Oct 2 23:34:59 PDT 1995
In article <9510030248.AA08909 at hplyot.obspm.fr>, dl at hplyot.obspm.fr (Laurent Demailly) writes:
>
> On the topic of risks for a "major browser" to be tempered/targetted
> as a virus :
>
> I asked monthes ago netscape folks to make md5sum and/or PGP digital
> signatures (preferably md5sum of each files, this in a file, itself
> pgp signed) of the binaries available on their page and on relevant
> newsgroup to reduce possibility of tempering.
>
> [ok it won't help mythical joe six pack's but...]
>
> Maybe I'll got more luck calling from here :-)
I've been thinking about this recently for obvious reasons. My concern
is that if someone can attack your download of netscape, they could also
attack your download of the program that validates netscape. Is there
really any way out of this one?
--Jeff
--
Jeff Weinstein - Electronic Munitions Specialist
Netscape Communication Corporation
jsw at netscape.com - http://home.netscape.com/people/jsw
Any opinions expressed above are mine.
More information about the cypherpunks-legacy
mailing list