[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: Proposal: Discourage rpmbuild --sign

From: Rex Dieter <rdieter math unl edu>
To: fedora-devel-list redhat com
Subject: Re: Proposal: Discourage rpmbuild --sign
Date: Wed, 31 Dec 2003 11:26:46 -0600

Warren Togami wrote:

Proposal ======== rpm-4.2.2 in rawhide and all future versions should discourage the use of rpmbuild --sign. Perhaps this can be done effectively by adding a large and annoying warning message and 15 second delay. Or disable it completely. I don't care how, just discouragement should be done.

...
> This istotally not the case for one key reason: Safety.

I would argue against disabling this feature altogether. IMO, building signed rpms from trusted specfiles/sources should *always* be possible (without making it a 2 step process).

-- Rex

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]