Re: RPM security (a newbie question)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Stanisław T. Findeisen wrote:

> Really? Have you seen a list telling you who reviewed which package
> before it got signed with Fedora key?
> 
> Probably there are lots of packages reviewed by their authors only?

Review and signing are two different processes. Every single new package
has to go through a review process as outlined in

http://fedoraproject.org/wiki/Packaging/ReviewGuidelines

Signing a package is done by a small number of people in the release
engineering team and they do that manually before pushing it into the
repositories.

Rahul

-- 
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
Guidelines: http://fedoraproject.org/wiki/Communicate/MailingListGuidelines

[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux