To demonize updates is incredibly dangerous. In practice, auto update is a security necessity.https://twitter.com/ioerror/status/703863424007057408 …
@benadida @damienmiller Auto update needs to be designed especially so that it cannot be used to deliver targeted backdoors.
-
-
@RichFelker@benadida something like "Certificate Transparency, but for builds" -
@damienmiller@benadida Exactly. Wouldn't it be amazing to have a public db of hashes for every binary release/update of every piece of sw? -
@RichFelker@damienmiller binary artifact transparency project is under way for exactly this, FreeBSD, Debian and others -
@ed_maste@damienmiller Great, but iOS, Android, and Windows stuff is where it's most desperately needed. -
@RichFelker@damienmiller we want it to be usable by binary-only operating systems too
End of conversation
New conversation -
-
-
@benadida@damienmiller This probably requires augmenting sig chks with some public record/consensus, like used in FOSS reproducible builds.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.