You are not logged in.
- Topics: Active | Unanswered
Pages: 1
#1 2006-10-24 22:10:47
- DeliQ
- Member
- From: /home
- Registered: 2006-10-18
- Posts: 17
GnuPG signed packages
I would like to hear some opinions about the use of gnupg software to sign the packages/PKGBUILD's by the developers.
As for myself I think it would be a nice addition to archlinux to make sure nobody else has fiddled with the package/PKGBUILD after the release by the developer. It would give us more proof of authenticity. (not that I am being paranoid or something 
)
But as a simple user I don't know if this is just doable or scalable. I just would like to discuss it.
--Ronny
trust is a weakness
Offline
Pages: 1