[Fedora-packaging] Re: RFC: Signed JAR Packaging Policy
rdieter at math.unl.edu
Tue May 15 12:10:18 UTC 2007
Jesse Keating wrote:
> On Monday 14 May 2007 11:25:21 Rex Dieter wrote:
>> agreed, precisely why I'm trying to come up with mechanisms/policy wrt
>> signed .jars in Fedora. :)
> Simple. Fix java so that it operates with an unsigned jar in a
> blatantly 'insecure' mode, like a self signed cert in apache.
Fine, it's one thing to make jvm's at least usable without signed .jars,
but that shouldn't block the bigger issue of finding a workable
mechanism to get signed .jars into Fedora packaging.
More information about the Fedora-packaging