Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
userbinator
on Dec 29, 2013
|
parent
|
context
|
favorite
| on:
OpenSSL.org hacked?
But would they also be able to replace the public key of the authors in all the
other
places it appears on the Internet?
dionyziz
on Dec 29, 2013
[–]
That. That's why the authors PGP-sign their sources. Furthermore, some of us maintain GPG trust paths, so replacing it on every other place on the Internet would still be futile.
dmix
on Dec 29, 2013
|
parent
[–]
There is also benefits of using decentralized distribution channels like bittorrent. So a single source can't be compromised.
Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
