On Sun, 2002-05-26 at 06:05, Marc Haber wrote: > - apt actually checking a package's signature, given a keyring > containing keys of maintainers whose packages are to be accepted > (being the Debian keyring by default, but being locally modifyable). debsigs and debsig-verify already exist, getting apt to use them shouldn't be hard. What is needed is to get the policy in place, so that more than just a handful of packages are signed. -mike
Attachment:
signature.asc
Description: This is a digitally signed message part