[Ambassadors] The Fedora-Red Hat Crisis
Rahul Sundaram
sundaram at fedoraproject.org
Wed Sep 10 09:34:07 UTC 2008
Frank Murphy wrote:
>
> Thats not Fedora.
> What testing tools were Fedora offered?
All official packages in Fedora and RHEL are signed and the gpg keys are
different. Someone managed to sign packages in RHEL even though it
wasn't pushed through the official RHN channels. From the various
announcements, the infrastructure team believes that they have managed
to take the infrastructure offline before anyone did something similar
in Fedora and all new updates are being signed with a new key as a
precautionary measure. Package management tools included with Fedora
verify that all updates are signed with the key which is listed in the
website for verification. So Fedora users shouldn't be needing any
additional tools beyond what is already provided as part of the
distribution.
Rahul
More information about the ambassadors
mailing list