Re: Facilitating external repositories

To: Ian Jackson <ijackson@chiark.greenend.org.uk>
Cc: Paul Wise <pabs@debian.org>, debian-devel@lists.debian.org, deity@lists.debian.org
Subject: Re: Facilitating external repositories
From: Wouter Verhelst <w@uter.be>
Date: Thu, 23 Jul 2015 19:39:47 +0200
Message-id: <[🔎] 20150723173947.GB2511@grep.be>
In-reply-to: <[🔎] 21936.55299.724772.736543@chiark.greenend.org.uk>
References: <20150605161051.GA1471@jtriplet-mobl1> <20150607090836.GA307@grep.be> <20150607183001.GA31028@x> <20150607215523.GG7669@grep.be> <87sia2isgc.fsf@xoog.err.no> <20150609165225.GA5329@grep.be> <m2381wypoi.fsf@rahvafeir.err.no> <CAKTje6GXX3GjHhre1KPza8M-O516BHPJZyR4s1m7DdO=XLx8ew@mail.gmail.com> <[🔎] 20150723081421.GA5349@grep.be> <[🔎] 21936.55299.724772.736543@chiark.greenend.org.uk>

On Thu, Jul 23, 2015 at 01:03:15PM +0100, Ian Jackson wrote:
> Wouter Verhelst writes ("Re: Facilitating external repositories"):
> > - It may be GPG-signed by one or more keys. Apt should have a way of
> >   configuring GPG keys that may be allowed to sign sources.list files,
> >   preloaded with the set of keys in the Debian keyring. This will allow
> >   system administrators in large environments to specify their own set
> >   of keys allowed to sign repositories, as well as allowing downstreams
> >   to add its own ways of trusting repositories.
> 
> The /name/ of the external repository should also be covered by the
> signature.

What would you describe as the "name" of the repository?

The URL is already part of the sources.list file. Additionally, the deb822 form
of the sources.list file is already configured to have a short and long
Description: field.

Am I missing something?

-- 
It is easy to love a country that is famous for chocolate and beer

  -- Barack Obama, speaking in Brussels, Belgium, 2014-03-26

Reply to:

Follow-Ups:
- Re: Facilitating external repositories
  - From: Ian Jackson <ijackson@chiark.greenend.org.uk>

References:
- Re: Facilitating external repositories
  - From: Wouter Verhelst <wouter@debian.org>
- Re: Facilitating external repositories
  - From: Ian Jackson <ijackson@chiark.greenend.org.uk>

Prev by Date: Bug#793395: ITP: binplist -- binary property list parser module
Next by Date: Bug#793404: massive waste of CPU time in debian/rules by inline commands
Previous by thread: Re: Facilitating external repositories
Next by thread: Re: Facilitating external repositories
Index(es):
- Date
- Thread