Should Fedora rpms be signed?

Peter Jones pjones at redhat.com
Fri Nov 5 16:06:31 UTC 2004


On Fri, 2004-11-05 at 00:41 -0500, seth vidal wrote:

> This, obviously, begins setting up the infrastructure to allow a user to
> add their own value to specific keys.
> 
> Thoughts?

It still lacks any method for a package source to tell a user what the
signature means.  There's no discovery mechanism.

-- 
        Peter

In these matters the only certainty is that there is nothing certain.
                -- Pliny the Elder




More information about the test mailing list