Jacob Appelbaum <ja...@appelbaum.net> wrote: ...
> We need a secure downloading tool, we need it to be built into every OS > by default and until then, we'll have to rely on tricks to hack it - > preloading certs in browsers, having a website to download it from and > so on. > What we need are backwards compatible self-certifying URLs or hyperlinks, e.g. something like this: <a href="./mysoftware.tgz" hmac="sha1:da19d18ef86f4fb8fe8b61323806ec1764f9bf00">My software</a> <a href="./mysoftware.tgz#sha1:da19d18ef86f4fb8fe8b61323806ec1764f9bf00">My software</a> And something similar to specify a public key. This would need to be standardized and supported by all major browsers. Martin -- Too many emails? Unsubscribe, change to digest, or change password by emailing moderator at compa...@stanford.edu or changing your settings at https://mailman.stanford.edu/mailman/listinfo/liberationtech