Estimated release of GnuPG 1.0.7?
Lionel Elie Mamane
lionel@mamane.lu
Mon Dec 17 21:33:01 2001
--tThc/1wpZn/ma/RB
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
On Mon, Dec 17, 2001 at 03:41:15PM +0100, Werner Koch wrote:
> what makes a Debian (or whatever) binary package more trustworth is
> that a lot of eyses have seen the source and that noone would risk
> the blame of deliberatley inserting a backdoor.
But the compiler might have a backdoor that inserts a backdoor into
any specific program (including itself), see
http://www.acm.org/classics/sep95/
With what compiler did you compile the compiler? Do you trust it?
--tThc/1wpZn/ma/RB
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE8HlYwscRzFz57S3MRAs1eAJ9Xvo4ggoJ1WdJ+5Hw1UQO803EcPgCfeqm3
wjLM4qEtyprwKsZlqd+MZE0=
=AduI
-----END PGP SIGNATURE-----
--tThc/1wpZn/ma/RB--