On Sun, 2008-10-12 at 17:49 +0000, Kevin Kofler wrote: > > Sure, but at that point I absolve all guilt of any security breach. > > Having packages automatically downloaded and installed can be both a > > blessing and a curse. Perhaps making it harder for people to provide > > unsigned repos might be a good idea long term. > > The problem is not unsigned repos, it's unsigned isolated packages one > wants to run pk-install on. Nahh, we'll allow this to proceed even with "abort" as InstallFile is a different method, and doesn't operate on a repo. Different problem. Richard. -- fedora-devel-list mailing list fedora-devel-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-devel-list
