I second Ben's comments. We need an easy way to do custom signed builds. As the # of activities increase and w/ varying levels of localization in those activities, countries will need customized builds w/ the activities they want pre-installed.
Walter: Could OLPC sign a XO image that we have customized until there is a mechanism for us to sign our own images? It I would rather not leave the machines unlocked indefinitely Bryan OLE Nepal http://www.olenepal.org On Mon, 2008-03-03 at 15:42 -0500, Benjamin M. Schwartz wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > John Gilmore wrote: > | I recommend that once you have developer keys, you leave the machines > | unlocked. You are going to be running a lot of unsigned builds in the > | future -- you're customizing your builds. > > Eventually, there must be a way for countries (and even trials) to get > signed custom builds. Either they get their own signing keys, or OLPC > offers to sign a "nepal.1" branch of tweaked releases. I understand why > this infrastructure has not yet been built, but it will be needed in order > for Bitfrost to be used at all. > > - --Ben > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2.0.7 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iD8DBQFHzGK8UJT6e6HFtqQRAgrlAJ9t3RWJ0Iy41UB1HG9/QdcgTFfzYACglaxN > oyGyaZ/pTCRANRT7ARB4eVc= > =wuVO > -----END PGP SIGNATURE----- _______________________________________________ Devel mailing list Devel@lists.laptop.org http://lists.laptop.org/listinfo/devel