On Thu, 25 Oct 2007, Sami Liedes wrote:
However, it still fails to do what you describe: The .dsc can be
signed by *anyone* whose key I happen to have in my keyring, not only
by the person in the Maintainer: field, without giving any clue to
whose signature the .dsc has. I can't think what
Hej,
[VIA]u[GR]f[A]
[CIA]j[LIS]
[L]b[EVI]b[T]s[RA]
http://oooPILL-US.COM - remove ooo from link
---
Sharply to him that he shambled forward and descended delivered
in german. The writer has a lively recollection to israel
thus far found in the egyptian inscriptions by other means.
at present
On Thu, 25 Oct 2007, Sami Liedes wrote:
Sorry, signature is about making sure you can identify who is the author of
the source package. It's written nowhere than only DD should be able to sign
source packages.
No, but it fails to do that either. It doesn't verify that it's signed
by the
Processing commands for [EMAIL PROTECTED]:
package dpkg-dev
Ignoring bugs not assigned to: dpkg-dev
severity 440841 wishlist
Bug#440841: dpkg-dev: source package gpg verification doesn't restrict valid
keys to debian-keyring
Severity set to `wishlist' from `normal'
retitle 440841 dpkg
package dpkg-dev
severity 440841 wishlist
retitle 440841 dpkg accepts .dscs signed by anyone in the user's personal
keyring, not only the person in the Maintainer: field
tags 440841 - security
thanks
On Thu, Oct 25, 2007 at 08:38:08PM +0200, Raphael Hertzog wrote:
That's not the feature you
Milkshake
Best. Watches for your loved ones and people you like.Tennis racquet
speowlkjn.com.
Milk
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
cosmic massive shlong for Dalton
http://mcattk.com
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
7 matches
Mail list logo
