Totem Movie Player
gilpel at altern.org
gilpel at altern.org
Wed Jul 1 20:11:04 UTC 2009
> On Wed, 2009-07-01 at 06:05 +0200, gilpel at altern.org wrote:
>> I must admit I thought I was downloading from rpmfusion instead of
>> rpmfind. I now find that I downloaded from:
>>
>> ftp://fr2.rpmfind.net/linux/rpmfusion/free/fedora/development/x86_64/os/libquicktime-1.1.1-2.fc11.x86_64.rpm
>>
>> rpmfusion is in the path only as a directory. Is rpmfind considered a
>> safe source for downloads? Of course, the packages didn't install as
>> they were already downloaded, but I'm afraid I did accept their key.
>> Is it preferable to remove it?
>
> Who's key was "theirs"? One from rpmfusion or rpmfind?
rpmfusion.
> Yum (and packagekit using yum) use a mirror list to get your files from
> a random repo mirror on their list. We'd generally trust that whoever
> compiled the list only included trustworthy mirrors, and I've not heard
> comments to suggest otherwise. The only problems I've read about have
> been about mirrors which are slow to download from, or slow for updates
> to appear on.
Unfortunately, as I explained, I "went on the net to find it. (Wrong move,
I know!) Which got me direct to rmpfind." The key was asked for
installation, only then did I receive the message saying that the said
packages were already installed.
Don't say "Silly you!". I already said "%%$#@#$ silly me!". Just tell me
how to find which key/repositories are signed to provide updates on my
system. I'll check and remove any reference to rpmfind.
More information about the fedora-list
mailing list