[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: http://fedora.redhat.com/ and GPG Signatures

From: CJ Kucera <fedora apocalyptech com>
To: Development discussions related to Fedora Core <fedora-devel-list redhat com>
Subject: Re: http://fedora.redhat.com/ and GPG Signatures
Date: Fri, 23 Apr 2004 16:30:20 -0500

Jesse Keating wrote:
> Could it be that the one on the keyserver has been signed by various 
> folks?  Rpm checking against keys that have been signed is a no-no, 
> which is why Fedora offers up a unsigned key on their website for 
> usage.  The one on the server is signed to verify validity.

Could be...  I suppose if that's the case it'd be nice to have a note
on the website mentioning that.  Regardless, just thought I'd bring
it up.

-CJ

-- 
WOW: Kakistocracy        |  "The ships hung in the sky in much the same
apocalyptech.com/wow     |    way that bricks don't." - Douglas Adams,
fedora apocalyptech com  |     _The Hitchhiker's Guide To The Galaxy_

References:
- http://fedora.redhat.com/ and GPG Signatures
  - From: CJ Kucera
- Re: http://fedora.redhat.com/ and GPG Signatures
  - From: Jesse Keating

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]