On 06/06/14 05:39, m...@the-compiler.org wrote: > From: Florian Bruhin <g...@the-compiler.org> > > There were a few bug reports related to this: > https://bugs.archlinux.org/task/39210 > https://bugs.archlinux.org/task/38543 > https://bugs.archlinux.org/task/37215 >
And all those were rejected... The default means that people are using "makepkg -g" to generate them, so is useless. People should be using whatever upstream publishes (or better pgp signatures) to verify files. Allan