Comments on: Packages signing in pacman, Archlinux getting secured?

By: Toibpeestitty

Toibpeestitty — Tue, 12 Jan 2010 22:32:36 +0000

+1 поддерживаю

By: Brendan

Brendan — Wed, 11 Nov 2009 20:21:26 +0000

Just want to add, I hope this is added, and there another reason it would be helpful. People who upload to the AUR could sign their packages, and then if you trust the uploader’s key, you can skip the whole “THIS PACKAGE WILL KILL YOUR FAMILY (Y/N)” dialogue (and not requiring you to always skip the scary message means the scary message will be more meaningful).

By: Daniel Böhmer

Daniel Böhmer — Tue, 18 Aug 2009 12:49:48 +0000

I have just switched to Arch Linux and it works like a charm!

Unfortunately I have found out about Arch not signing its packages afterwards. I had just expected that this feature would be featured by any modern Linux distro.

Not signing packages is definitely not acceptable for any distro, neither source nor binary ones.

If this is not going to be implemented in the near future I will have to leave Arch because I cannot live with this kind of bad conscience for a long time.

In the comments above there are some people complaining about sigs with very dump arguments. It seems to me that are quite many people without much knowledge about security and cryptography. If you need help implementing this, feel free to ask for certain support by e-mail. I am not the best programmer (as I had few time to relearn programming after switching from Windows to Linux) but I do know the underlying crypto techniques and general stuff.

By: Aniruddha

Aniruddha — Tue, 16 Jun 2009 19:06:18 +0000

Is there an indication when this can be implemented?

By: muskar

muskar — Sun, 14 Jun 2009 10:45:40 +0000

I’m still an Archlinux user, but I’m not really happy with it, because of the missing signatures.

Please implement this, everything could be so perfect!

By: thebodzio

thebodzio — Mon, 16 Feb 2009 19:57:42 +0000

Package signing? Definitely… I am for!

By: Ideatank » some troubles after kernel26 update

Ideatank » some troubles after kernel26 update — Thu, 12 Feb 2009 12:30:08 +0000

[...] found an interesting blogpost about archlinux and package signing at http://gcarrier.koon.fr/2008/06/03/packages-signing-in-pacman-archlinux-getting-secured/ and now I’m asking if it will be implemented in the near future. Any [...]

By: onot

onot — Thu, 01 Jan 2009 01:34:04 +0000

There is simply no argument, signing is mandatory for anything you are going to install. I really want to switch to Arch Linux, but this is the only thing stopping me so far.

By: whyohwhy

whyohwhy — Wed, 24 Sep 2008 01:33:15 +0000

The answer to all this is very, very simple:

1) Signed packages provide more security over non-signed. That’s a matematical and logical fact.

2) It is much harder to break into specific server and change keys (while planting malware onto a mirror), than to break into any of the many mirrors and plant malware, without having to break into specific server and hijack keys.

3) Trusting a signature that _may_ be hacked one day is not lowering any security of having no signature to begin with (see point 1).

4) Frequency, or absence thereof, of planted malware attacks in the past is not an argument. One time is enough to make serious damage, if only to one server or desktop. Do you want that one computer to be _yours_? I don’t.

Absence of known attacks does not mean there is no interest, it could mean ( and probably does) that the systems are secure enough to be (extremely) difficult to hack into.

5) Systems can be employed (ala snort) that monitor for any intrusion. This in fact leaves the majority of trust, then, into the admin who uploads keys manually. Hacking such a system is exponentially more difficult.

6) Subtle “attacks”, ie. planting backdoors silently, is more evil and more profitable than overt attack that might be discovered immediately. Short of building your packages from source (that you went through to see if the code is allright, there is no certainty that existing packages are not already infected by a backdoor or whatever.

6a) If I wanted to build my OS from source, I’d go Gentoo.

7) as Linux makes its way onto the Desktop you can rest assured more of such attacks will be attempted.

By: Geoffroy Carrier

Geoffroy Carrier — Tue, 09 Sep 2008 22:00:12 +0000

Things are going pretty slow. I finally don’t have much time but kept interest on this; toofishes’ contributions made me realize he could be a lot faster than I am and that kinda discourage me ;)