Re: Wishlist for woody+1

To: debian-devel@lists.debian.org
Subject: Re: Wishlist for woody+1
From: Robert Lemmen <robertle@semistable.com>
Date: Mon, 27 May 2002 14:30:48 +0200
Message-id: <[🔎] 20020527123048.GA2327@semistable.com>
In-reply-to: <[🔎] 1022447268.29681.6.camel@orthrus>
References: <[🔎] 20020525143339.GA26121@bombadil.xmldesign.de> <[🔎] E17Butg-0002q6-00@torres.ka0.zugschlus.de> <[🔎] 1022447268.29681.6.camel@orthrus>

I also think that signed packages are a very important feature for the
future. but someone once pointed out that you also need to sign and
check the Release and Package files (signed they already are).

Is anyone working on the whole matter? could she need a helping hand?

robert

On Sun, May 26, 2002 at 05:07:47PM -0400, Mike Furr wrote:
> On Sun, 2002-05-26 at 06:05, Marc Haber wrote:
> > - apt actually checking a package's signature, given a keyring
> > containing keys of maintainers whose packages are to be accepted
> > (being the Debian keyring by default, but being locally modifyable).
> debsigs and debsig-verify already exist, getting apt to use them
> shouldn't be hard.  What is needed is to get the policy in place, so
> that more than just a handful of packages are signed.
> 
> -mike



-- 
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

References:
- Wishlist for woody+1
  - From: Erich Schubert <erich.schubert@mucl.de>
- Re: Wishlist for woody+1
  - From: Marc Haber <debian-devel.lists.debian.org@marc-haber.de>
- Re: Wishlist for woody+1
  - From: Mike Furr <mike.furr@umbc.edu>

Prev by Date: Re: libtool -e command not found errors
Next by Date: Re: command -v in postinsts violating policy
Previous by thread: Re: Wishlist for woody+1
Next by thread: Re: Wishlist for woody+1
Index(es):
- Date
- Thread