F9 whatis updates-newkey
Till Maas
opensource at till.name
Fri Mar 20 20:00:21 UTC 2009
On Do März 19 2009, Milos Jakubicek wrote:
> Don't panic, the -newkey repos are there because of a security accident
> in last summer as a new signing key for our RPMs has been created and
> all of them resigned (into a new -newkey repo).
Afaik only updates after the incident have been signed with the new keys,
which imho did not really fix any problem in case the signing key leaked. It
only helps to update to F10 and to remove the old signing keys from the rpm
database.
Regards,
Till
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 835 bytes
Desc: This is a digitally signed message part.
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20090320/7f38137f/attachment.sig>
More information about the fedora-devel-list
mailing list