1 |
On 30 Aug 2002, Ernst Lehmann wrote: |
2 |
|
3 |
> some time ago, there was a discussion about crytographicaly signing the |
4 |
> E-build-scripts, so that the information and there stored md-5 checksums |
5 |
> are better secured againts modification or injection of trojans and so |
6 |
> on. |
7 |
|
8 |
This will not be handled before 1.4. The attitude seems to be positive to |
9 |
doing proper keysigning, and there has been a lot of good discussion on |
10 |
how the mechanics should be, but we have not had the time to start any |
11 |
proper implementation of it. |
12 |
|
13 |
In the end, it'll come down to when the already overworked Portage |
14 |
maintainer(s) can get around to it. |
15 |
|
16 |
Kind regards, |
17 |
|
18 |
Karl T |