Re: Why different keys for -testing and non-testing?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Jesse Keating wrote:
On Fri, 2009-01-16 at 22:23 -0500, Casey Dahlin wrote:
I think its wrong to get the latter out of the keys (though the right way might mean touching rpm in a way we aren't allowed/able to). Once we have "This package came from Fedora" then for the rest of the info, we can just state it in a package header. If the headers are signed then we have the necessary level of security. We only need one key to provide the non-refutability. The rest of the information can just be stated.

I'd rather state that in the repodata, rather than the rpm itself.
Stating it in the rpm would mean changing the rpm file between -testing
and updates, which would break the ability to hardlink, and would mean
unnecessary churn.

That works too. The point is we shouldn't be using keys to categorize things. Only to authenticate them. And the only reason to have more than one key is to limit the effects of one of the keys being compromised (the all-your-eggs-in-one-basket issue).

--CJD

--
fedora-devel-list mailing list
fedora-devel-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-devel-list

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Fedora Announce]     [Fedora Kernel]     [Fedora Testing]     [Fedora Formulas]     [Fedora PHP Devel]     [Kernel Development]     [Fedora Legacy]     [Fedora Maintainers]     [Fedora Desktop]     [PAM]     [Red Hat Development]     [Gimp]     [Yosemite News]
  Powered by Linux