[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: buildds: "Authentication warning overridden."

On Fri, Nov 09, 2007 at 06:53:12PM -0600, Raphael Geissert wrote:
> Hi all,
> It's not uncommon to see buildds (actually build tools) override the
> package/Release signature warning.

That's inevitable because http://incoming.debian.org is not signed; The
update frequency of that repository (which is available only to buildd
hosts by IP and/or password protection) makes that impossible -- or at
least that's what I understood; you may want to check with ftp-masters
for the full story.

> Wouldn't it be better to have the buildd's verify the Release signature
> rather than just overriding the warning?

Sure. If you have a technical solution to the above-described problem,
I'm sure it'll be welcome.

<Lo-lan-do> Home is where you have to wash the dishes.
  -- #debian-devel, Freenode, 2004-09-22

Reply to: