Why are updates processed so slowly?
Jesse Keating
jkeating at redhat.com
Fri Feb 6 18:03:34 UTC 2009
On Fri, 2009-02-06 at 14:43 +0100, Christoph Höger wrote:
> ONe question arrises when thinking about it:
>
> What does that single person really sign for? I mean: When I upload an
> update to a package I maintain, does the signing by that "super secret"
> key have any other meaning than: "Yes it came from choeger who has a valid FAS account"?
>
> Really, why do we need that key to have a password?
> Shouldn't it be suffice to have all FAS keys signed properly and use them to sign packages when they're handed in?
>
> Maybe Jesse himself could clarify that a bit.
The signing shows that the package came from the Fedora Buildsystem, and
is destined for the proper repo. The end user only has to trust one,
maybe two keys to allow the installation of anything from the base,
updates, and maybe updates-testing repo.
rpm does not understand the web of trust, so there is no way to trust
one key, and implicitly trust any other keys that one key has signed.
And since rpm will happily install anything with a trusted key,
regardless of what repo it came from, keeping the key secret and private
is critical for our end user's security.
I'm currently training Josh Boyer from the releng team on how to do
package signing and updates pushing.
--
Jesse Keating
Fedora -- Freedom² is a feature!
identi.ca: http://identi.ca/jkeating
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20090206/d1d38c4e/attachment.sig>
More information about the fedora-devel-list
mailing list