-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Boyd Stephen Smith Jr. wrote:
> On Monday 02 March 2009 12:05:20 marca...@gmail.com wrote:
>> I am using a repository that doesn't sign its package. I know and
>> trust it.
>
> That's not exactly what the signatures are about. They are mainly about
On Mon, 2 Mar 2009 14:40:54 -0600
"Boyd Stephen Smith Jr." wrote:
> On Monday 02 March 2009 12:05:20 marca...@gmail.com wrote:
> > I am using a repository that doesn't sign its package. I know and
> > trust it.
>
> That's not exactly what the signatures are about. They are mainly about
> prev
On Monday 02 March 2009 12:05:20 marca...@gmail.com wrote:
> I am using a repository that doesn't sign its package. I know and
> trust it.
That's not exactly what the signatures are about. They are mainly about
preventing MitM attacks, whether from mirror administrators or someone
attacking yo
On Mon, Mar 02, 2009 at 01:05:20PM -0500, marca...@gmail.com wrote:
> I am using a repository that doesn't sign its package. I know and
> trust it. Each time I install, I get the aptitude warning, which is
> fine with me. But I wish aptitude would tell me which repository the
> package was comin
I am using a repository that doesn't sign its package. I know and
trust it. Each time I install, I get the aptitude warning, which is
fine with me. But I wish aptitude would tell me which repository the
package was coming from, so I could be absolutely sure it was what I expect.
Is there a plac
5 matches
Mail list logo
