On 2/18/07, Ricardo Nabinger Sanchez <[EMAIL PROTECTED]> wrote: > On Sun, 18 Feb 2007 09:31:21 +0100 > Jonatan Liljedahl <[EMAIL PROTECTED]> wrote: > > > Here's a patch for InstallPackage that adds a -S/--no-sign-check option!
Thanks, I've just commited that. > I'd suggest to mark the package as such also (installed from unchecked > Recipe). If the signature check failed, either the Recipe is broken/needs > update or a bug was triggered inside InstallPackage (thus the traceback). > > It should be easy to the (unaware) user see those quickly, and act upon them > (deinstall, update to a newer version, file a bug, ...). Do you have any suggestions? Marking a package in any way is going to either add or modify another file, and then the package will be automatically broken to VerifyProgram's eyes, as there will be either a md5sum miss or an 'invader', according to FileHash's contents. I think this lies in the "user's problem corner", as he/she explicitly asked to ignore that verification. -- Lucas powered by /dev/dsp _______________________________________________ gobolinux-devel mailing list [email protected] http://lists.gobolinux.org/mailman/listinfo/gobolinux-devel
