Re: non-disclosure of infrastructure problem a management issue?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



> If there is an issue severe enough which warrants stopping updates
> (which indicates that rpm signing keys have been compromised) why should
> we trust those fingerprints and servers?

Because you have no other basis of trust at all if you don't believe the
master keys ?

Or you set up a new infrastructure and create the 'provisional fedora
project' or whatever.

-- 
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list

[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux