Re: RFC: Signed JAR Packaging Policy

Nicolas Mailhot <nicolas.mailhot@xxxxxxxxxxx> · Mon, 12 Mar 2007 21:42:11 +0100

Le lundi 12 mars 2007 à 16:33 -0400, Warren Togami a écrit :
> Nicolas Mailhot wrote:
> > 
> > The problem is SUN controls the default certificate list in jvms, and
> > it's reinitialised every time you update a vendor jvm, so in practical
> > terms only SUN-approved keys "just work"
> > 
> 
> This might have interesting consequences for Sun's plans to GPLv3 their 
> Java.

I hope they dump their stupid signing requirement. They already managed
to "forget" to update one of their root certificates in the past

-- 
Nicolas Mailhot

--
Fedora-maintainers mailing list
Fedora-maintainers@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-maintainers

--
Fedora-maintainers-readonly mailing list
Fedora-maintainers-readonly@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-maintainers-readonly