On Thu, Aug 08, 2013 at 09:33:54AM -0400, Marc Deslauriers wrote: > 1- Ship an appstore key on the device > 2- server creates signature for uploaded packages, and stores with metadata > that > gets downloaded > 3- package installer verifies package signature located in metadata with > appstore key
That would either mean I couldn't use existing tools, or that I'd have to extend them to support detached signatures. Not necessarily horrible, but it doesn't come quite as much for free. -- Colin Watson [[email protected]] -- Mailing list: https://launchpad.net/~ubuntu-appstore-developers Post to : [email protected] Unsubscribe : https://launchpad.net/~ubuntu-appstore-developers More help : https://help.launchpad.net/ListHelp
