Re: .deb integrity check

To: debian-devel@lists.debian.org
Subject: Re: .deb integrity check
From: Chris Waters <xtifr@dsp.net>
Date: 09 Jun 1999 23:37:03 -0700
Message-id: <[🔎] 87674wsgs0.fsf@dsp.net>
In-reply-to: Hugo Haas's message of "Wed, 9 Jun 1999 23:21:56 +0200"
References: <[🔎] 19990609232156.A24276@via.ecp.fr>

Hugo Haas <hugo@debian.org> writes:

> I think it would be interesting to PGP-sign the md5sums file included in
> the packages with a Debian key and add an option to check this signature.

As long as some allowance is made for the needs of the local sysadmin
or workstation user who probably doesn't want to go through the hassle
of signing locally built packages, then I agree.  If it had been more
of a hassle for me to build my own local packages, I might never have
become a developer.

Of couse, as long as we're wishing, I have a few wishlist items of my
own for dpkg and/or apt, but that's another story.  :-)

-- 
Chris Waters   xtifr@dsp.net | I have a truly elegant proof of the
      or    xtifr@debian.org | above, but it is too long to fit into
http://www.dsp.net/xtifr     | this .signature file.

Reply to:

Follow-Ups:
- Re: .deb integrity check
  - From: Sarel Botha <sjb@dundee.lia.net>

References:
- .deb integrity check
  - From: Hugo Haas <hugo@debian.org>

Prev by Date: Re: .deb integrity check
Next by Date: Re: .deb integrity check
Previous by thread: Re: .deb integrity check
Next by thread: Re: .deb integrity check
Index(es):
- Date
- Thread