I am using a repository that doesn't sign its package. I know and trust it. Each time I install, I get the aptitude warning, which is fine with me. But I wish aptitude would tell me which repository the package was coming from, so I could be absolutely sure it was what I expect. Is there a place I can ask for this. A bug system I could use? Please point me in the right direction. --