RFC: Signed JAR Packaging Policy
Nicolas Mailhot
nicolas.mailhot at laposte.net
Mon Mar 12 18:59:40 UTC 2007
Le lundi 12 mars 2007 à 14:57 -0400, Jesse Keating a écrit :
> On Monday 12 March 2007 14:52:48 Dennis Gilmore wrote:
> > The only people that can sign the jar's are sun. No one else.
>
> Hrm, that doesn't match what I was asked internally, it sounded like we would
> be able to get it signed after we built it, but we wouldn't be able to expose
> that step that does the signing.
SUN has been known to bless third-party signing certificates provided
their use was restricted to a well-defined entity. So a Red Hat
certificate is a possibility. A Fedora one would conflict with the
project charter.
--
Nicolas Mailhot
More information about the Fedora-maintainers
mailing list