[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Leif's important piece on update golden keys

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Leif's important piece on update golden keys
From: Nathan Freitas <nathan@xxxxxxxxxxx>
Date: Mon, 07 Mar 2016 11:40:40 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 07 Mar 2016 11:40:53 -0500
In-reply-to: <512753.d446d6d9cb9bf382131ded612a4ad2a280b3e30c@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <32285C9E-1B1D-49EA-AF57-3E802E030CAF@xxxxxxxxxxx> <740432CF-C5B1-433D-AED6-991B9203D03C@xxxxxxxxxxxxxxx> <512753.348cc78b3470b09116365df66251cfa1dd3945c7@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <201603061744.24276.holger@xxxxxxxxxxxxxx> <1457363571.4132735.541896002.515318DB@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <512753.d446d6d9cb9bf382131ded612a4ad2a280b3e30c@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <F15FF8A3-769B-44C5-ADD1-A8D84B310112@xxxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

On Mon, Mar 7, 2016, at 11:11 AM, Spencer wrote:
> Hi,
> 
> >> 
> >> Holger Levsen:
> >> https://reproducible-builds.org and 
> >> https://reproducible.debian.net 
> >> 
> 
> Thanks!
> 
> > 
> > Nathan Freitas:
> > https://f-droid.org/wiki/page/Deterministic,_Reproducible_Builds
> > 
> 
> Thanks!
> 
> However, even though reproducible-builds seems to address the manual
> install as well, which is good, I read the problem as being the actual
> backdoor of auto-update.
> 
> Since my Dad will not be able to make this verification, removing
> auto-update from the package is the only real resolution here.

I think our goal is to remove any one person from having the authority
to release an update. F-Droid or similar package managers should expect
multiple signatures in the future instead of just one. Part of the trust
people will place in projects or apps in the future is that they are not
only open-source, but have a judicially diverse or robust set of
signatories.

> Besides, given the broken/missing auto-update opt-out in packages like
> OrFox, it is difficult to trust the developers, since it is the user who
> defines "malicious".

Can you explain this more? I want to make sure I don't misunderstand
what the issue is.

+n
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- [tor-dev] Leif's important piece on update golden keys
  - From: Spencer

References:
- Re: [tor-dev] [valencia2016] Leif's important piece on update golden keys
  - From: Nathan Freitas
- [tor-dev] Leif's important piece on update golden keys
  - From: Spencer

Prev by Author: Re: [tor-dev] [valencia2016] Leif's important piece on update golden keys
Next by Author: Re: [tor-dev] Tor 0.2.8 and Fallback Directory Mirrors
Previous by thread: [tor-dev] Leif's important piece on update golden keys
Next by thread: [tor-dev] Leif's important piece on update golden keys
Index(es):
- Author
- Thread