right, fixed in 2017.1, if anybody wants to do a SRU for trusty and
xenial, they are welcome to.
** Changed in: debian-archive-keyring (Ubuntu Zesty)
Status: New => Won't Fix
** Changed in: debian-archive-keyring (Ubuntu Yakkety)
Status: New => Won't Fix
** Changed in:
AFAICS this is fixed in 2017.7.ubuntu1:
debian-archive-keyring (2017.7ubuntu1) bionic; urgency=medium
* Do not trust debian archive keys by default, and instead ship those
keys in usr/share/keyrings. On Ubuntu, this package is mostly used for
validating chroots when debootstrapping
** No longer affects: debian-archive-keyring (Ubuntu Vivid)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1685305
Title:
Debian keys should not be trusted by default
To manage notifications about
** Tags added: patch
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1685305
Title:
Debian keys should not be trusted by default
To manage notifications about this bug go to:
** Patch added: "no-trusted-keys-for-ubuntu.diff"
https://bugs.launchpad.net/ubuntu/+source/debian-archive-keyring/+bug/1685305/+attachment/4866108/+files/no-trusted-keys-for-ubuntu.diff
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to
