š
Original date posted:2013-08-05
š Original message:For usability purposes, we at Hive would like to have an auto-updater in our wallet app.
What is a safe way to do this? I understand that Bitcoin-QT lacks such an updater for security reasons... Has been thought out in more detail since that decision was made?
We have been toying around with the idea of placing one server behind a Tor hidden service, whose only function is to output a checksum of the update package. The theory is that if it is well-secured, it will at least be immune to tampering at the physical hosting level.
Any thoughts or advice about any of this?
-wendell
grabhive.com | twitter.com/grabhive | gpg: 6C0C9411
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 841 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20130805/bc30fd43/attachment.sig>;
Wendell [ARCHIVE] /
npub1c5ā¦34kvp
2023-06-07 15:05:32
in reply to nevent1qā¦9syh
Author Public Key
npub1c56tk56u5846gc9tj6kcd886y9sztx6yrj24zhegrsv87qfs7nes834kvpPublished at
2023-06-07 15:05:32Event JSON
{
"id": "ace68e724c5df63b15899e65b4188d3791176d0db13ba68699330f2be5266da2",
"pubkey": "c534bb535ca1eba460ab96ad869cfa2160259b441c95515f281c187f0130f4f3",
"created_at": 1686150332,
"kind": 1,
"tags": [
[
"e",
"a4a5f7af9bd38381697d4a3581db549efa1968ef6f6f831d2066e33c2e787bd6",
"",
"reply"
],
[
"p",
"a23dbf6c6cc83e14cc3df4e56cc71845f611908084cfe620e83e40c06ccdd3d0"
]
],
"content": "š
Original date posted:2013-08-05\nš Original message:For usability purposes, we at Hive would like to have an auto-updater in our wallet app.\n\nWhat is a safe way to do this? I understand that Bitcoin-QT lacks such an updater for security reasons... Has been thought out in more detail since that decision was made?\n\nWe have been toying around with the idea of placing one server behind a Tor hidden service, whose only function is to output a checksum of the update package. The theory is that if it is well-secured, it will at least be immune to tampering at the physical hosting level.\n\nAny thoughts or advice about any of this?\n\n-wendell\n\ngrabhive.com | twitter.com/grabhive | gpg: 6C0C9411\n\n-------------- next part --------------\nA non-text attachment was scrubbed...\nName: signature.asc\nType: application/pgp-signature\nSize: 841 bytes\nDesc: Message signed with OpenPGP using GPGMail\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20130805/bc30fd43/attachment.sig\u003e",
"sig": "60e318119a55afb6443f1f639dae8388eed53d88dcfb4cdcf93cf05fbd001d9e57970c4928ccf90a3febc84b30891bc60f244259b83c69a129a15216da920925"
}