[nycbug-talk] BSD Binary Updates

[Chris Coleman]

>
>
>.  Quick question, are the binary patches pulled
>directly from the projects server?  If so I assume the client does
>checksuming etc.  I know I know, these are probably FAQ's that can be
>addressed by me running the thing :)
>
>  
>
There is quite a bit of encryption going on in this project.  All 
communication with the server is done via SSL, both the web page and the 
client. We also use MD5s extensively through out the patching process to 
identify and verify files.  Some of the internal communications are even 
key signed/encrypted.  But we are still looking for more ways to make 
this more secure.

-Chris