bit-identical builds. How far are we from that point? Is it the timestamps that most build tools add to their build that prevents it? What's the blocker?
Aloha, RK. On Thu, Jan 22, 2015 at 10:29 PM, Wout Mertens <wout.mert...@gmail.com> wrote: > nixos@home would be impossible to secure until derivations are > bit-for-bit identical on multiple builds. Then you could do something like, > have 1000 builders, and if 501 builders get the same output hash for a > derivation, it gets accepted on the public ledger of input/output hashes. > Grow the builders as the popularity of NixOS grows. You need to subvert a > majority of builders to subvert the binaries. > > ...but we don't have bit-identical builds... yet. > On Thu Jan 22 2015 at 3:46:48 AM stewart mackenzie <setor...@gmail.com> > wrote: > >> Forgive me, this is my fault for not being clear enough. >> >> Yes I too would feel uncomfortable about a nixos@home setup unless of >> course it includes some kind of blockchain. Even then it would be too >> expensive to run. >> _______________________________________________ >> nix-dev mailing list >> nix-dev@lists.science.uu.nl >> http://lists.science.uu.nl/mailman/listinfo/nix-dev >> > > _______________________________________________ > nix-dev mailing list > nix-dev@lists.science.uu.nl > http://lists.science.uu.nl/mailman/listinfo/nix-dev > >
_______________________________________________ nix-dev mailing list nix-dev@lists.science.uu.nl http://lists.science.uu.nl/mailman/listinfo/nix-dev
