Jump to content
Not connected, Your IP: 3.135.214.175
Vucnu

Insert openvpn client in debian repo?

Recommended Posts

Hi,

since the client is opensource and FOSS can you submit to the debian team in order to include the client in the standard repo?

 

It will be very useful because I don't trust very much downloading a .deb file from the internet.

 

Thanks you.

Share this post


Link to post

Hi,

since the client is opensource and FOSS can you submit to the debian team in order to include the client in the standard repo?

 

It will be very useful because I don't trust very much downloading a .deb file from the internet.

 

Thanks you.

 

 

I can understand what you are wanting to accomplish.  Even repo files are subject to "contamination" during transit to your machine, although the odds are improved.

 

fyi - are you paying attention to the signature link under the client download (specific to your operating system) here on Air?  For now you can run a SHA256 against the file that is delivered to your machine.  Its quite difficult to imagine a matched SHA256 against anything other than the legit file!!

 

Although while I am at it I would like to encourage Air to sign their downloads with a PGP key, which is tantamount to a perfect authenticator!  My opinion, which is always correct.  LOL!!

Share this post


Link to post

Hi

 

 

Even repo files are subject to "contamination" during transit to your machine, although the odds are improved.

 

This is simply false, read about apt security in debian documentation.

 

fyi - are you paying attention to the signature link under the client download (specific to your operating system) here on Air?

 

Yes, but this is a system less secure then **official** repositories

 

For now you can run a SHA256 against the file that is delivered to your machine.  Its quite difficult to imagine a matched SHA256 against anything other than the legit file!!

 

This is a system less secure then **official** repositories, can I remember you that openvpn client need to be root?

 

Although while I am at it I would like to encourage Air to sign their downloads with a PGP key, which is tantamount to a perfect authenticator!  My opinion, which is always correct.  LOL!!

All apt repositories come with software signed against PGP.

If AirVpn sign their download, we HAVE to obtain their key and to assure that the key is correct. Please read somethings about web of trust.

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
  • Security Check
    Play CAPTCHA Audio
    Refresh Image

×
×
  • Create New...