Re: [Tails-dev] Security implications: moving code from Veri…

Delete this message

Reply to this message
Author: Daniel Kahn Gillmor
Date:  
To: Nicolas Vigier, The Tails public development discussion list
Subject: Re: [Tails-dev] Security implications: moving code from Verification Extension to our website
Thanks to everyone for talking through the details.

On Fri 2019-03-22 15:47:23 +0100, Nicolas Vigier wrote:
> With the current version of the extension, I don't know if it makes a
> big difference. However if there was some plan to improve the extension
> to make it verify gpg signatures, then that could be a big difference.


I think i agree with Nicolas here. I was working under the
misunderstanding that the extension did verify the OpenPGP signatures,
apologies for not following this closely enough earlier.

          --dkg