Re: Deprecating .gz format on kernel.org

From: Jörn Engel (joern@wohnheim.fh-wedel.de)
Date: Thu Mar 20 2003 - 17:13:32 EST

Next message: Roberto Clarke: "Make $3,000+ per day! NO SPONSORING REQUIRED!"
Previous message: p b: "crystallizing ulimit"
In reply to: Hank Leininger: "Re: Deprecating .gz format on kernel.org"
Next in thread: Hank Leininger: "Re: Deprecating .gz format on kernel.org"
Reply: Hank Leininger: "Re: Deprecating .gz format on kernel.org"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, 20 March 2003 16:54:13 -0500, Hank Leininger wrote:
> On 2003-03-20, Joern Engel <joern () wohnheim ! fh-wedel ! de> wrote:
>
> > That shouldn't matter, most of the times. If you want to build the
> > code, you have to [bg]unzip anyway, so there is no extra cost.
> > And I have a hard time to think of a real-world application where you
^^^^^^^^^^
> > don't want to unpack but need to verify the signature.
>
> A few come to mind:

"Come to mind" doesn't sound line "that'd break our environment." ;)

> -To verify and then use a .tar.[bg]z2?, you must gpg --verify and then
> tar -x[jz]vf, but to unpack, then verify, then use you must uncompress
> to a tempfile or pipe to gpg, then verify, then untar. Silly waste of
> CPU and/or disk space.[*]

Veryfy and use are two action. You need a script or a human, changing
either one won't be hard.

> -Verifying downloads immediately, when they won't necessarily be needed /
> used right away; no need to unpack until it's needed, but would like to
> know the download is bad right away.

real-world?

> -Verifying something pulled down to one machine before scp'ing it elsewhere
> where it will actually be used.

real-world?

> -Verifying before [bg]unzip means you won't expose [bg]unzip to likely
> malicious data (think bugs in [bg]unzip which make them crash on bad
> compressed files). Of course GPG/PGP is still subject to input-based
> bugs, but they are in any case; no need for the decompression tools to
> be as well.

Crashes don't matter. Exploits would, so that point is actually valid.

> [*] ...Now if tar had a --sig option to chain gpg between gunzip and
> untar... but that would just be Wrong.

unzip && checksig && tar?

Jörn

-- 
More computing sins are committed in the name of efficiency (without
necessarily achieving it) than for any other single reason - including
blind stupidity.
-- W. A. Wulf 
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Next message: Roberto Clarke: "Make $3,000+ per day! NO SPONSORING REQUIRED!"
Previous message: p b: "crystallizing ulimit"
In reply to: Hank Leininger: "Re: Deprecating .gz format on kernel.org"
Next in thread: Hank Leininger: "Re: Deprecating .gz format on kernel.org"
Reply: Hank Leininger: "Re: Deprecating .gz format on kernel.org"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sun Mar 23 2003 - 22:00:32 EST