Steve Langasek wrote: > The ISO images are generated on a different machine from ftp-master, with > their own Release files which must be signed by a separate key. The policy > for those keys (and for keys used for signing stable in general?) probably > needs to be separate from that used on the ftp archive.
The CDs arn't signed at all right now, but for all CDs except for full CDs (netinst, businesscard), if the archive key built into the CD is expired, the install will probably fail. -- see shy jo
signature.asc
Description: Digital signature