Re: Packages and Signatures, a summary

To: debian-devel@lists.debian.org
Subject: Re: Packages and Signatures, a summary
From: Jonathan McDowell <noodles@earth.li>
Date: Tue, 4 Apr 2000 12:09:40 +0100
Message-id: <20000404120940.U22244@earth.li>
In-reply-to: <20000404185957.A12147@azure.humbug.org.au>; from aj@azure.humbug.org.au on Tue, Apr 04, 2000 at 06:59:57PM +1000
References: <20000404185957.A12147@azure.humbug.org.au>

On Tue, Apr 04, 2000 at 06:59:57PM +1000, Anthony Towns wrote:
> <Manoj> The problem with signed debs is, of course, that it has
>         little meaning for vast majority of people, unless they can get
>         the developers key into their web of trust

FWIW there are a minimum of 9,500 people who are in the web of trust
that includes the Debian keyring. I've written a program to compute
trust paths too, but it hogs huge amounts of memory (as you'd expect for
a database of about 1,000,000 keys). 

J.

-- 
                 /------------------------------------\
                 |        No... Don't stop...         |
                 | http://www.blackcatnetworks.co.uk/ |
                 \------------------------------------/

Attachment: pgpAXDAPSHgZY.pgp
Description: PGP signature

Reply to:

References:
- Packages and Signatures, a summary
  - From: Anthony Towns <aj@azure.humbug.org.au>

Prev by Date: Re: New shmfs and Debian
Next by Date: Re: Reducing downtime on system critical services
Previous by thread: Re: Packages and Signatures, a summary
Next by thread: Requirements of the tool (dpkg) support for signed packages
Index(es):
- Date
- Thread