Re: APT public key updates?
Anthony Towns <firstname.lastname@example.org> writes:
> How so? In the long term you end up with "aj signed 2005, aj and 2005
> signed 2006, 2005 is expired"; I don't think there's anything broken in
> that situation.
So I do trust aj's keys, and the keys he signs. Unfortunately, I
don't have any way to indicate that to apt-key or the keys
automatically installed by the apt maintainer. Perhaps this needs to
gel into a feature request for apt?
Still, I don't fully understand why the rotation at all.