Re: Debian derivatives census: Tucunaré: WARNING: insecure apt repository

To: Paul Wise <pabs@debian.org>
Subject: Re: Debian derivatives census: Tucunaré: WARNING: insecure apt repository
From: Issamo Kisaka <issamo.kisaka@gmail.com>
Date: Fri, 31 Aug 2012 09:45:01 +0800
Message-id: <[🔎] CAJDiPMnx7weG+tN644Gz1biwUPqAKrbMf=N6dO9haWMto3OOeg@mail.gmail.com>
In-reply-to: <1345528566.5739.35.camel@chianamo>
References: <1345528566.5739.35.camel@chianamo>

Hi,

we are still studying how to make our repository has GPG keys, but we are having hardware problems and to solve link. In addition we are migrating to the Tucunaré new test version of Debian, the Wheezy. We apologize for the delay.

Thanks.

On Tue, Aug 21, 2012 at 2:56 AM, Paul Wise <pabs@debian.org> wrote:

Hi,

I note that the apt repository registered for Tucunaré in the Debian
derivatives census[1] does not have any GPG signatures on it. As such,
it opens any machine running Tucunaré to the possibility of arbitrary
code execution when the machine is upgraded or when software is
installed. I would encourage you to sign the apt repository metadata and
warn your users that they need to update their systems. If the
sources.list snippet registered on the wiki page is incorrect, please
update it to the correct version.

1. http://wiki.debian.org/Derivatives/Census/Tucunare

--
bye,
pabs

http://wiki.debian.org/PaulWise

--
Issamo Kisaka {[(Programador)]}

sf.net/projects/tucunare
www.debian.org
www.kernel.org

Reply to:

Follow-Ups:
- Re: Debian derivatives census: Tucunaré: WARNING: insecure apt repository
  - From: Paul Wise <pabs@debian.org>

Prev by Date: Re: Debian derivatives census: Tucunaré: WARNING: insecure apt repository
Previous by thread: Debian derivatives census: Maemo: sources.list issues
Next by thread: Re: Debian derivatives census: Tucunaré: WARNING: insecure apt repository
Index(es):
- Date
- Thread