Pacman could do with a feature to bypass authors packages and keys so
those don't disrupt updates.
That would mean installing packages that are not bearing valid
signature. If you don’t want package signing, simply disable signature
checking altogether in your pacman configuration. Accepting a
The particular key cannot be imported; it's not in public key servers yet.
On Mon, 21 Jun 2021, Eli Schwartz via arch-general wrote:
> On 6/21/21 11:36 PM, Jude DaShiell via arch-general wrote:
> > Pacman could do with a feature to bypass authors packages and keys so
> > those don't disrupt upda
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi,
On Mon, 21 Jun 2021, Jude DaShiell via arch-general wrote:
Pacman could do with a feature to bypass authors packages and keys so
those don't disrupt updates.
IMO, ignoring signatures is a severe security issue and should not be
done light-
On 6/21/21 11:36 PM, Jude DaShiell via arch-general wrote:
> Pacman could do with a feature to bypass authors packages and keys so
> those don't disrupt updates.
They don't disrupt updates. The keys are updated via archlinux-keyring,
or via an "Import this key?" prompt via WKD / the SKS pool.
If
Pacman could do with a feature to bypass authors packages and keys so
those don't disrupt updates.