On Mon, July 17, 2006 11:43 am, Martin Visser wrote: > The whole point of package signing is demonstrating trust. By > downloading a package from Dag's site you are electing to use him as a > provider of some code or information. So you already have some element of > trust in him. If you choose to install it then you are also trusting the > delivery mechanism - his server integrity, the network between you and > him, etc.
Martin, as I have been using his RPMs with RH73 for longer than I care to remember, I guess I can continue to trust him.. thanks for detailed explanation ! (meanwhile, I'm off to buy more paper, I've managed to print about 800 pages of RH docs, and, there is another 800 to print, I think a duplexing printer would be handy) -- Voytek -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
