mono and snk key files
Adam Goode
adam at spicenitz.org
Fri Dec 11 16:46:57 UTC 2009
On 11/29/2009 11:29 AM, Christopher Brown wrote:
> 2009/11/29 Kalev Lember <kalev at smartlink.ee>:
>> Hello,
>
> <snip>
>
>> Comments?
>
> I'm the maintainer for log4net but unfortunately not for nant. I've
> finally gotten around to looking at this.
>
> Debian have a policy[1] of using a standard mono.snk which is provided
> by a package (I guess we just then BuildRequires this) and I think
> this seems like a good solution but have no experience of this.
>
We should definitely use Debian's key, right? Otherwise some Fedora CLI
libraries would be unnecessarily incompatible with Debian, and whoever
else uses Debian's key.
The whole business of not shipping code-signing keys is a little
contrary to open source. I think this is something that GPLv3 would
prohibit. We should use a single well-known signing key for any package
that we don't have the keys for, I think.
Adam
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 261 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20091211/fb59ea9f/attachment.sig>
More information about the fedora-devel-list
mailing list