Luk Claes wrote: > Raphael Geissert wrote: >> >> What about getting every maintainer's key in a keyring and LDAP? it would >> finally allow for a better management system to take place > > The problem is that not all maintainers have keys in the first place.
Which in theory is not good. Even packages that later get uploaded by a DD should be signed. /me thinks about double-signed files (first signature by the maintainer, second by the uploader). > > Cheers > > Luk > > Cheers, -- Raphael Geissert - Debian Maintainer www.debian.org - get.debian.net -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
