Should Fedora rpms be signed?
Nils Philippsen
nphilipp at redhat.com
Fri Oct 29 14:22:58 UTC 2004
On Fri, 2004-10-29 at 09:48 -0400, seth vidal wrote:
> > This still forces me to use special tools like up2date and yum to access
> > the packages if I want to verify their origins.
>
> Is this really all that big of a deal?
Sometimes you don't have it, sometimes they don't work (say I botched
python on my system -- "and then?") ;-). I use yum/up2date regularly but
I wouldn't want to have artificial barriers for people who for one or
the other reason want to or can only install with RPM.
Nils
--
Nils Philippsen / Red Hat / nphilipp at redhat.com
"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety." -- B. Franklin, 1759
PGP fingerprint: C4A8 9474 5C4C ADE3 2B8F 656D 47D8 9B65 6951 3011
More information about the fedora-test-list
mailing list