Re: how to ask for aptitude "improvement" wrt unsigned package

To: debian-user@lists.debian.org
Subject: Re: how to ask for aptitude "improvement" wrt unsigned package
From: Johannes Wiedersich <johannes@physik.blm.tu-muenchen.de>
Date: Tue, 03 Mar 2009 20:07:36 +0100
Message-id: <[🔎] 49AD7FF8.6000209@physik.blm.tu-muenchen.de>
In-reply-to: <[🔎] 200903021440.59329.bss@iguanasuicide.net>
References: <[🔎] E1LeCW0-0003aB-LR@aptiva.optonline.net> <[🔎] 200903021440.59329.bss@iguanasuicide.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Boyd Stephen Smith Jr. wrote:
> On Monday 02 March 2009 12:05:20 marcausl@gmail.com wrote:
>> I am using a repository that doesn't sign its package.  I know and
>> trust it.
> 
> That's not exactly what the signatures are about.  They are mainly about 
> preventing MitM attacks, whether from mirror administrators or someone 
> attacking your internet connection directly.

Or earthly things like failing disks or failing network connections.
It's always good to _verify_ that the software arrives as intended by
the packager...

Cheers,
Johannes

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkmtf/gACgkQC1NzPRl9qEV2xACeKpRITgXfxAvlq77o9HcJM4Ca
XkYAn2wH1FUG+F3WjU21WqYfruj4Fjle
=1qZ2
-----END PGP SIGNATURE-----

Reply to:

References:
- how to ask for aptitude "improvement" wrt unsigned package
  - From: marcausl@gmail.com
- Re: how to ask for aptitude "improvement" wrt unsigned package
  - From: "Boyd Stephen Smith Jr." <bss@iguanasuicide.net>

Prev by Date: Re: Lowest ram system with X. Presario 5166.
Next by Date: Re: Scanner problems
Previous by thread: Re: how to ask for aptitude "improvement" wrt unsigned package
Next by thread: RE: downloading hotmail emails
Index(es):
- Date
- Thread