[debhelper-devel] Request to re-open "Bug#540215: Introduce dh_checksums" discussion
Mimi Zohar
zohar at linux.vnet.ibm.com
Mon Jul 6 17:11:29 UTC 2015
Hi!
When I opened the "Bug#766267: debhelper: add file signature support
in .deb packages" feature request for adding file signatures to debian
packages, I wasn't aware Franklin Liat submitted a feature request in
2010 for sha256 support - Bug#540215: Introduce dh_checksums.
Unfortunately, I only came across the discussion recently.
There was a rather long discussion at the time as to whether larger file
hashes provide any additional security. Franklin's summary of the
discussion is available here:
https://lists.debian.org/debian-devel/2010/03/msg00971.html
Since that discussion in 2010, the linux-integrity subsystem has matured
and can now be configured to verify and enforce local file integrity
based on file signatures. I would like to re-open the discussion for
including larger file hashes and file signatures in deb packages.
Mimi
More information about the debhelper-devel
mailing list