On Tue, Oct 04, 2016 at 03:15:18PM +0200, Marc Espie wrote:
> - the new scheme is slightly more unflexible with respect to unsigned
> data: by default, every .tgz is piped thru signify -Zs, so
> pkg_add/pkg_info/fw_update WON'T even see any data if it's not signed.
> Error reporting is inadequate
About a week ago, we switched to the new signing scheme by default.
There are good reasons to bury the old signing scheme completely, so
this is what's currently happening, there are some rough edges.
Technically speaking, the new signatures are "outside", they're in
the gzip header, and the only
2 matches
Mail list logo
