[Bug 1013681] Re: make apt-key net-update secure
cjwatson at canonical.com
Wed Sep 12 15:37:18 UTC 2012
I'm fine with the signed-keyring-file approach too, although I haven't
confirmed that there are no attacks possible on the code used to verify
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to apt in Ubuntu.
make apt-key net-update secure
Status in “apt” package in Ubuntu:
Status in “apt” source package in Quantal:
Attacks are being performed against the 'apt-key net-update' command
and it is not considered secure. While it is in the process of being
disabled in Ubuntu, it should be improved to be secure.
To manage notifications about this bug go to:
More information about the foundations-bugs