| 1 |
On 30 Aug 2002, Ernst Lehmann wrote: |
| 2 |
|
| 3 |
> some time ago, there was a discussion about crytographicaly signing the |
| 4 |
> E-build-scripts, so that the information and there stored md-5 checksums |
| 5 |
> are better secured againts modification or injection of trojans and so |
| 6 |
> on. |
| 7 |
|
| 8 |
This will not be handled before 1.4. The attitude seems to be positive to |
| 9 |
doing proper keysigning, and there has been a lot of good discussion on |
| 10 |
how the mechanics should be, but we have not had the time to start any |
| 11 |
proper implementation of it. |
| 12 |
|
| 13 |
In the end, it'll come down to when the already overworked Portage |
| 14 |
maintainer(s) can get around to it. |
| 15 |
|
| 16 |
Kind regards, |
| 17 |
|
| 18 |
Karl T |
Archives