Important infrastructure announcement
Danny Yee
danny at anatomy.usyd.edu.au
Fri Aug 15 12:57:06 UTC 2008
Richard Hughes wrote:
> PackageKit will only allow automatic updates of signed packages. If
> we're pumping out invalid signed updates then, well, meh.
The implication of the announcement is that signed updates may be
compromised (or possibly even the key). How else can we read this?
"as a precaution, we recommend you not download or update
any additional packages on your Fedora systems"
Danny.
More information about the fedora-devel-list
mailing list