You are not logged in.
package "compizconfig-python" is signed by Pierre Schmitz <pierre@archlinux.de>, but in https://www.archlinux.org/master-keys/ there is no such user. can i trust him and import that key?
Last edited by gymka (2012-03-23 14:03:57)
Offline
Do a bit of research what the point of the master keys is.
Offline
If "there is such a user" does not imply said user to be on the list, then I don't fully comprehend the concept of "being there".
Offline
If "there is such a user" does not imply said user to be on the list, then I don't fully comprehend the concept of "being there".
What?
Pierre signed a package with his key, you can verify that it is his key, so what's wrong?
Offline
He said Pierre isn't there, but I can see Pierre, so if "being there" doesn't mean "being there", I don't know if I am or not. It's more of a philosophical question.
Offline
You only have to trust and verify the master keys. You can import random keys without harm.
Offline