On Sat, Jun 21, 2008 at 03:52:12PM +0200, Alexander Wirt wrote: > I'm still not that sure if its a good idea to add a non-offical debian repo > keyring into the archive... But I let the decision to the ftp-masters..
Well, currently a problem is the only way to get a trusted path to the bpo repository is by fetching debian-backports-keyring from it, checking your signature in its .dsc, etc. So this is what I'm trying to solve. As for being non-official, I can try to make it clear in the package description that this key isn't officially endorsed by Debian, etc; does this sound fine to you? -- Robert Millan <GPLv2> I know my rights; I want my phone call! <DRM> What good is a phone call… if you are unable to speak? (as seen on /.) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]