[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Guix and remote trust
From: |
Christopher Baines |
Subject: |
Re: Guix and remote trust |
Date: |
Thu, 12 Dec 2019 16:55:41 +0000 |
User-agent: |
mu4e 1.2.0; emacs 26.3 |
Pierre Neidhardt <address@hidden> writes:
> I am wondering whether Guix can still provide more guarantees than
> non-functional package managers / OS when running on a remote machine
> (controlled by an non-trusted third-party) with, say, SSH root access.
>
> For instance, can we somehow have the guarantee that the remote machine
> is the Guix we installed and hasn't been tampered with?
>
> I'm not sure whether I'm asking something trivial or not. If the
> latter, I'd be happy to read more literature about it.
>
> What do you people know on the topic?
This sounds like guix gc --verify=contents. Debian has a similar feature
I think, with dpkg --verify.
signature.asc
Description: PGP signature
- Guix and remote trust, Pierre Neidhardt, 2019/12/12
- Re: Guix and remote trust,
Christopher Baines <=
- Re: Guix and remote trust, Pierre Neidhardt, 2019/12/13
- Re: Guix and remote trust, zimoun, 2019/12/13
- Re: Guix and remote trust, Pierre Neidhardt, 2019/12/13
- Re: Guix and remote trust, zimoun, 2019/12/13
- Re: Guix and remote trust, Josh Marshall, 2019/12/13
- Re: Guix and remote trust, Pierre Neidhardt, 2019/12/13
- Re: Guix and remote trust, Pierre Neidhardt, 2019/12/13
- Re: Guix and remote trust, Pierre Neidhardt, 2019/12/13
- Re: Guix and remote trust, zimoun, 2019/12/13