On Wed, 2004-09-01 at 09:09 +0200, Michael Koch wrote: > Am Mittwoch, 1. September 2004 08:34 schrieb Ingo Juergensmann: > > > I do trust some non-DDs more than I trust some DDs. Just being a > > DDs doesn't mean that you're trustworthy to me. > > Full ACK. > > Debian can't even trust DD machines, they could be hacked ... or > otherwise contaminated ... Right, so you can't trust the gpg signature DD's create. Nor the initial binaries that are uploaded. Sigh. Rob
Attachment:
signature.asc
Description: This is a digitally signed message part