[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: rpm --import

From: Ralf Ertzinger <fedora-devel camperquake de>
To: jkt redhat com, Development discussions related to Fedora Core <fedora-devel-list redhat com>
Cc:
Subject: Re: rpm --import
Date: Fri, 7 Jan 2005 13:25:25 +0100

Hi.

Jay Turner <jkt redhat com> wrote:

> Security.  It's generally a good idea to validate that the key you're
> adding to the keyring is really the one that you think it is, and if
> this keyring addition were done automatically, then someone could switch
> out the keys, thus a malicious key would be automatically added to the
> keyring. Things start to go downhill from that point.

Well, I generally have to trust the media I install from anyway, so what
is the point in treating a single file different from all the others?

Follow-Ups:
- Re: rpm --import
  - From: Hans Kristian Rosbach
- Re: rpm --import
  - From: Jay Turner

References:
- rpm --import
  - From: Florin Andrei
- Re: rpm --import
  - From: Ralf Ertzinger
- Re: rpm --import
  - From: Jay Turner

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]