Bug#304846: (fwd) apt: replace /etc/apt/trusted.gpg with /etc/apt/trusted-keys/

To: Peter Palfrader <weasel@debian.org>, 304846@bugs.debian.org
Subject: Bug#304846: (fwd) apt: replace /etc/apt/trusted.gpg with /etc/apt/trusted-keys/
From: Matt Zimmerman <mdz@debian.org>
Date: Tue, 2 Aug 2005 13:28:34 -0700
Message-id: <[🔎] 20050802202834.GR2508@alcor.net>
Reply-to: Matt Zimmerman <mdz@debian.org>, 304846@bugs.debian.org
In-reply-to: <20050630210018.GA27377@opium.palfrader.org>
References: <20050415220600.GL25665@opium.palfrader.org> <20050630210018.GA27377@opium.palfrader.org>

On Thu, Jun 30, 2005 at 11:00:18PM +0200, Peter Palfrader wrote:
> On Sat, 16 Apr 2005, Peter Palfrader wrote:
> 
> > Currently, apt 0.6 uses a single binary file as its keyring in /etc/apt.
> > This has the disadvantage that modifying it requires special tools like
> > apt-key, and so key management is a pain.
> > 
> > The following patch makes apt use a directory in etc/apt named
> > trusted-keys/.  Keys are simply placed in that directory if the user
> > wants to trust them for signing the Release file.
> 
> Any opinions on that?  Do you still want to go with a binary file in
> /etc/ that needs extra tools for management?

It is intentional that the existing authentication infrastructure relies
only on (the relatively lightweight) gpgv, and not full-blown gpg.

Your proposed method requires gpg for management, while the existing
keyring-based approach doesn't.

-- 
 - mdz

Reply to:

Prev by Date: Bug#316915: misleading error message about missing public key
Next by Date: Bug#317432: tries to parse Release as Packages file
Previous by thread: Processed: Re: Bug#316915: misleading error message about missing public key
Next by thread: Bug#317432: tries to parse Release as Packages file
Index(es):
- Date
- Thread