Why different keys for -testing and non-testing?

Douglas E. Warner silfreed at silfreed.net
Sat Jan 17 15:19:21 UTC 2009


On 01/16/2009 Jesse Keating wrote:
> Given that we can't revoke, yes, we plan to use new keys each release.
> We can use gpg web-o-trust thing and sign the new keys with the old 
> keys
> and whatnot, does that actually help people?

Why couldn't we revoke keys?  Even if RPM itself doesn't have the capability,
we could have yum periodically check for updates on installed keys on
keyservers through a plugin, I would imagine.

-Doug



-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20090117/9bda8921/attachment.sig>


More information about the fedora-devel-list mailing list