--WYTEVAkct0FjGQmd Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Apr 10, 2003 at 03:50:32PM -0400, seth vidal wrote: > So someone was kinda bugging me about making gpg sig checking a > mandatory DEFAULT. I wanted to hear y'all responses. >=20 > What if gpgcheck=3D1 was the default and if you set gpgcheck=3D0 yum would > warn you about the danger of such actions? >=20 > How annoying would that be to everyone? Hopefully enough to make people aware that there are signatures ... ;) > And would it really matter? >=20 > are gpgsigs as ignored as I think they are? Possibly by a lot of end users, but this is a reason more to put them in, It will help educate the community to use them more. On the other hand there exists no real web of trust in that sense in rpm, so an end user has to blindly accept a set of unverifyable keys. Still better than nothing. --=20 Axel.Thimm@xxxxxxxxxxxxxxxxxxx --WYTEVAkct0FjGQmd Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQE+ln+WQBVS1GOamfERAuiwAJ9kYYWeLcHuoHLMpfjEFCHNauB8kQCeOsz7 EOudOguqDITIfutIG7cT/+M= =LELc -----END PGP SIGNATURE----- --WYTEVAkct0FjGQmd--