Bazaar package from PPA prohibits Hardy -> Intrepid upgrade
Jelmer Vernooij
jelmer at vernstok.nl
Wed Nov 26 01:30:40 GMT 2008
On Wed, 2008-11-26 at 10:39 +1100, Andrew Cowie wrote:
> On Tue, 2008-11-25 at 14:51 +0100, Jelmer Vernooij wrote:
> > Packages from PPA are never authenticated (GPG signed).
>
> Is that as in "not signed by a specific key" or just "no one signed
> them"? In the latter case, assuming someone is in the strong set, can't
> the person who uploads just sign their work?
No, because the person who uploads uploads a source package (and that
needs to be signed for PPA to accept it), not the binary package (which
is built by PPA).
Cheers,
Jelmer
More information about the bazaar
mailing list