Re: bits from the release team

To: debian-devel@lists.debian.org
Subject: Re: bits from the release team
From: Joey Hess <joeyh@debian.org>
Date: Thu, 4 May 2006 20:07:45 -0400
Message-id: <[🔎] 20060505000745.GA32637@kitenet.net>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 878xphphi2.fsf@informatik.uni-tuebingen.de>
References: <20060502203633.GR9262@mails.so.argh.org> <[🔎] 878xphphi2.fsf@informatik.uni-tuebingen.de>

Goswin von Brederlow wrote:
> Having the key in the debian-keyring package was a nice idea but
> ultimatly useless. Sarge users can't fetch the new etch keyring
> package because the signature doesn't match and the signature doesn't
> match because the sarge keyring doesn't have the key. Fun fun fun.

Er, sarge doesn't have secure apt so that problem doesn't exist. Also,
secure apt allows you to install packages that don't have a trust path.

FWIW, I consider this issue solved by the debian-archive-keyring,
only issue I know if is that upgrades have to manually upgrade it before
upgrading apt.

-- 
see shy jo

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Re: bits from the release team
  - From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>
- Re: bits from the release team
  - From: Lionel Elie Mamane <lionel@mamane.lu>

References:
- Re: bits from the release team
  - From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>

Prev by Date: Re: Debian Policy version
Next by Date: Re: bits from the release team
Previous by thread: Re: bits from the release team
Next by thread: Re: bits from the release team
Index(es):
- Date
- Thread