On Wed, 2006-08-02 at 18:31 +0100, Mike Hearn wrote: > Is it really that hard to check a digital signature? I'd have thought > there'd be APIs in Python/C/Mono that make this trivial by now. And that's > all you have to do to protect against the "files are changed by evil > people" case.
gpg has well documented exit codes which can be suitably used for this. It's not high performance to invoke lots of sub-processes if you have a lot of files you are verifying, but it get's the job done.
signature.asc
Description: This is a digitally signed message part
_______________________________________________ desktop-devel-list mailing list [email protected] http://mail.gnome.org/mailman/listinfo/desktop-devel-list
