On Tue, Jan 26, 2021 at 10:44:05AM -0800, Kevin Fenzi wrote: > So, the thread here kind of fell quiet with everything else going on. > > It seems clear there's issues to address here before this change might > get approved. Here's my list: > > * Try and change the storage format of the signatures to not take up > tons of room. I guess this would be in ima tools and sigul? > > * Get rpm updated at least in all Fedora's / active RHEL's to be able to > handle rpms with the signatures. I don't know how likely this is for > rhel7, but 8 and fedora 32 should hopefully not be hard. > > * Have a few actual, working policies people can look at and see what > they can do/how this is useful > > Any other important ones to add? I think Florian raised some valid questions around support for multiple keys, handling revocation, etc. several replies back. Brian -- Brian C. Lane (PST8PDT) - weldr.io - lorax - parted - pykickstart _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
