[Fedora-packaging] Re: RFC: Signed JAR Packaging Policy

Jesse Keating jkeating at redhat.com
Mon May 14 15:20:13 UTC 2007


On Monday 14 May 2007 10:00:16 Rex Dieter wrote:
> If you're talking about the keys, I'm not advocating (re)distributing the
> java CA keys, any more than I'd advocate (re)distributing the keys fedora
> uses to sign it's rpms (cause that'd be silly/useless).

Right, but our packages are perfectly usable without being signed.  Without 
changes to the java stuff, the package is completely UNusable without being 
signed.

-- 
Jesse Keating
Release Engineer: Fedora
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-packaging/attachments/20070514/457377c7/attachment.sig>


More information about the Fedora-packaging mailing list