signing: formatting changes
parent
221576b903
commit
709a94060f
11
talk.tex
11
talk.tex
|
@ -599,9 +599,8 @@
|
|||
\begin{frame}{Software Signing}
|
||||
\lecture{We also have certain other guarantees. Or attempts, at least.}
|
||||
|
||||
\begin{itemize}
|
||||
\item<2-> Any package manager worth using will verify signatures of
|
||||
package
|
||||
\begin{itemize}[<+->]
|
||||
\item Any package manager worth using will verify signatures of package
|
||||
maintainers
|
||||
\lecture{If you're using a package manager that doesn't verify a
|
||||
cryptographic signature of the package, then you should
|
||||
|
@ -611,8 +610,8 @@
|
|||
maintainer intended for you to receive. I'm not getting into
|
||||
those caveats here.}
|
||||
|
||||
\item<+-> GNU projects also distribute detached signatures for manual
|
||||
verification
|
||||
\item GNU projects also distribute detached signatures for manual
|
||||
verification
|
||||
\lecture{In the case of source distributions, detached signatures are
|
||||
often used. You'll see this with GNU programs, for
|
||||
example---if you download a program from ftp.gnu.org, you'll
|
||||
|
@ -621,7 +620,7 @@
|
|||
actually signed.}
|
||||
|
||||
%% TODO: either come up with a plan or delete this
|
||||
\item<+-> No such thing exists for the Web
|
||||
\item No such thing exists for the Web
|
||||
\lecture{...We don't have this type of thing for the web.}
|
||||
|
||||
\item<+-> We need a web of trust (e.g. PGP)---decentralized
|
||||
|
|
Loading…
Reference in New Issue