On Sun, Sep 14, 2014 at 09:52:00PM +0200, Joerg Jaspert wrote: > Also, going down to such small intervals means we MUST resign, even if > there is no update at all in the archive (so an extra cronjob, just to > be sure). That's no problem in the main archive, there is always enough > going on, but security can go way longer without an update (which is why > such a (weekly) cronjob exists on security). Unless ftp-master is down because of breakage and all Debian systems will start showing warnings because the resign did not take place. Resilience through not serving the world directly has some value. I guess these days we have a mirror that's fairly up to date to potentially start serving from, once the key is restored (I assume it is not synced). Not sure if that's true for security-master. Kind regards Philipp Kern
Attachment:
signature.asc
Description: Digital signature