Fedora 8 torrents aren't signed!?
Björn Persson
listor3.rombobeorn at tdcpost.se
Mon Nov 12 23:01:08 UTC 2007
måndagen den 12 november 2007 skrev Bruno Wolff III:
> It guards against malicious peers. If you somehow bad a bad torrent file
> that pointed you to the wrong place to start the download, you could get
> a bad copy.
Yeah, and it's not hard to imagine how that might happen given that the
torrent files are distributed by plain old insecure HTTP, so it's still a
very good idea to have a PGP signature.
Björn Persson
More information about the fedora-list
mailing list