Re: "The Trojan Horse": a small inaccuracy

To: jdassen@wi.leidenuniv.nl
Cc: debian-devel@lists.debian.org
Subject: Re: "The Trojan Horse": a small inaccuracy
From: Bruce Perens <Perens@Hams.com>
Date: Thu, 19 Nov 1998 10:53:04 -0800
Message-id: <[🔎] 199811191853.AA14098@foxtrot.rahul.net>

Hi Ray and others,

I did indeed anticipate Debian's switch to GPG in my article, mostly
because I chose to promote a free product over a non-free one. Sorry!
Are the problems _only_ with exit status? If so, I'd assume they can be
fixed soon.

Copy to me - I'm not on the debian-devel list.

	Thanks

	Bruce

From: "J.H.M. Dassen (Ray)" <jdassen@wi.leidenuniv.nl>

Hi Bruce,

In http://www.lwn.net/1998/1119/Trojan.html you write (regarding uploads in
Debian)
>Almost all of those developers are set up to provide public-key signatures
>of their uploads using GNU Privacy Guard

This is not yet the case; currently, we still use PGP. GPG is AFAICT
regarded by its maintainer as not yet fully suitable for this task (e.g.
having it set proper exit codes so dinstall can use it is somewhat
difficult). We are of course preparing for a transition to GPG (e.g. dpkg
has already been modified to be able to use GPG for signing), but that
transition has not happened yet.

Greetings,
Ray

Reply to:

Prev by Date: Re: Qt Freed!
Next by Date: Re: checking the release-critical bugs
Previous by thread: Re: debhelper and policy version
Next by thread: Things left to do for release.
Index(es):
- Date
- Thread