Re: Packages getting created without signature

To: debian-mentors@lists.debian.org
Cc: debian-mentors@lists.debian.org
Subject: Re: Packages getting created without signature
From: Colin Tuckley <colint@debian.org>
Date: Thu, 13 Dec 2007 14:34:41 +0000
Message-id: <47614301.2050307@debian.org>
In-reply-to: <20071213142519.GA58688@straylight.m.ringlet.net>
References: <14292654.post@talk.nabble.com> <14310223.post@talk.nabble.com> <14313530.post@talk.nabble.com> <200712131221.53263.cobaco@linux.be> <981da8a40712130456x7366cf43g5a88829d1973a6c@mail.gmail.com> <20071213142519.GA58688@straylight.m.ringlet.net>

Peter Pentchev wrote:

> Well, there's always gpg-agent, of course... isn't this pretty much
> what it was *written* for? :)

Yes, but gpg-agent is a short term temporary volatile cache! Which is very
different from putting your passphrase in the ENVIRONMENT or a script.

-- 
Colin Tuckley      |  +44(0)1903 236872  |  PGP/GnuPG Key Id
Debian Developer   |  +44(0)7799 143369  |     0x1B3045CE

Try to learn from other people's mistakes, you haven't time to make them all
yourself! - Anon

Reply to:

References:
- Packages getting created without signature
  - From: iluvlinux <iluvubuntu@gmail.com>
- Re: Packages getting created without signature
  - From: iluvlinux <iluvubuntu@gmail.com>
- Re: Packages getting created without signature
  - From: iluvlinux <iluvubuntu@gmail.com>
- Re: Packages getting created without signature
  - From: "cobaco (aka Bart Cornelis)" <cobaco@linux.be>
- Re: Packages getting created without signature
  - From: "Michael Lamothe" <michael.lamothe@gmail.com>
- Re: Packages getting created without signature
  - From: Peter Pentchev <roam@ringlet.net>

Prev by Date: Re: Removing parts of upstream tar-ball, parsers, autobuilding
Next by Date: a "package-all" package
Previous by thread: Re: Packages getting created without signature
Next by thread: Re: Packages getting created without signature
Index(es):
- Date
- Thread