Kenneth Scharf wrote: > I use debian, and I DO trust them. I would never have > a problem downloading a .deb file from the official > debian site or a trusted mirror. In fact it is a > little different with .deb's. RPM's are EVERYWHERE, > and ANY Tom, Dick, or Harry can create them.
Yes, but I believe only the _official_ Red Hat rpms carry the Red Hat digital signature. > DEB's seem to be created mostly by Debian personal (though > there are some non-official ones). The reason for > this is that the tools necessary to create DEB's are > not as well documented and understood, so only real > debian developers are using them. "security through obsecurity"...... this all sounds rather like that other OS vendor doesn't it. Shaun
