Atomicorp

Security for Everyone
https://forums.atomicorp.com/

PGP signatures for ModSec rules?

https://forums.atomicorp.com/viewtopic.php?t=8397

Page 1 of 1

PGP signatures for ModSec rules?

Posted: Mon Apr 25, 2016 9:27 pm
by David Robb
Hi,

The daily modsecurity rules tarballs used to have a .asc file available with them with a PGP signature for the file, but now I can't find that .asc file (I use it to check that the modsec rules are valid). Are they intentionally no longer signed?

Thanks,
David

Re: PGP signatures for ModSec rules?

Posted: Fri Apr 29, 2016 1:49 pm
by scott
For the moment yes they are disabled. For infrastructure/update speed reasons the archives are generated on the mirrors. We'll probably augment this with sha512 hashes like we do with the installers.
All times are UTC-04:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited