Bug#318630: Design TRUSTED support

To: 318630@bugs.debian.org
Subject: Bug#318630: Design TRUSTED support
From: Goswin von Brederlow <goswin-v-b@web.de>
Date: Wed, 02 Jun 2010 11:26:53 +0200
Message-id: <[🔎] E1OJkDt-00014w-5O@book.localnet>
Reply-to: Goswin von Brederlow <goswin-v-b@web.de>, 318630@bugs.debian.org

Any objections to the proposed design for this feature?

- deb [key=0x1AB52325534,0x3475BDF478] ...
  Only accept signatures by one of the listed fingerprints

- deb [keyring=foobar.gpg] ...
  Use foobar.gpg to verify the signatures and only foobar.gpg.

deb [trust=always|never] ....
  Ignore the Release signature and just always or never trust the
  source. "always" would be for file:// or sources on the local
  network where you don't care if it is unsigned. "never" would be for
  repositories you want to always be asked before they are used and
  which should not replace packages from more trusted repositories.

MfG
	Goswin

Reply to:

Follow-Ups:
- Bug#318630: Design TRUSTED support
  - From: Julian Andres Klode <jak@debian.org>

Prev by Date: Size mismatch ...
Next by Date: Re: RFC interaction with external dependency solver: "APT" state
Previous by thread: Re: Size mismatch ...
Next by thread: Bug#318630: Design TRUSTED support
Index(es):
- Date
- Thread