This is the mail archive of the
java@gcc.gnu.org
mailing list for the Java project.
Re: security with gcj
- From: - - <decuplo at yahoo dot com>
- To: Andrew Haley <aph at redhat dot com>
- Cc: java at gcc dot gnu dot org
- Date: Wed, 9 Jul 2008 14:35:05 -0700 (PDT)
- Subject: Re: security with gcj
- Reply-to: decuplo at yahoo dot com
--- On Tue, 7/8/08, Andrew Haley wrote:
> Not really, no. I'm not sure hos much sense this
> makes,
> in any case: when you install an executable, whether
> it's
> been built by gcj or something else, that's the time to
> check that it has been signed by someone you trust. RPM
> provides this facility, as do a bunch of other package
> management programs.
It is quite different the RPM "sign" all the "tar" just before/during
the installation, instead the method with "al" sign the application every
time it is execute, because is the executable itself that will be certified.
x10