On Wed, 2007-05-02 at 19:43 +0200, Florian La Roche wrote: > > 1. supporting gpg/x509 signatures detached from repomd.xml on each repo > > - so we can check the content for validity > > Is sqlite repo-data still on your list or have you changed > your mind on this? >
it's already in place. that's in 3.1.X. this is about verifying the repomd.xml for integrity of the repo, independent of just data integrity. -sv _______________________________________________ Yum-devel mailing list [email protected] https://lists.dulug.duke.edu/mailman/listinfo/yum-devel
