New Key Repo Locations

Jeroen van Meeuwen kanarip at
Fri Aug 29 10:54:40 UTC 2008

Axel Thimm wrote:
> W/o knowing all details, why not move os to os.oldkey and use os as
> the new key's content? If the key is considered compromised what
> mirror admin would like to keep the old signed packages around anyhow?

I think then the problem becomes that every existing installation points 
to os/ where it would need os.oldkey/ to get the packages it can check 
gpg keys on.

Kind regards,

Jeroen van Meeuwen

More information about the Fedora-infrastructure-list mailing list