[packagekit] Extending the RepoDetail signal
Duncan Mac-Vicar P.
dmacvicar at suse.de
Wed Oct 13 02:25:11 PDT 2010
On 10/07/2010 12:25 PM, Anders F Björklund wrote:
> Does this make any difference between whether it is the rpm packages
> that are signed, or if it is the repomd.xml metadata that is signed ?
>
> Currently yum doesn't make a difference between, which causes some
> problems for other clients. Or maybe that is more of a backend worry ?
I don't see why the security model of the backend needs to be exposed to
the user, who cares only on trusted or not trusted, if they care for it
at all.
Then the question if the "trusted" is a repo or a package attribute.
--
Duncan Mac-Vicar P. - Novell® Making IT Work As One™
SUSE LINUX Products GmbH, GF: Markus Rex, HRB 16746 (AG Nuernberg)
More information about the PackageKit
mailing list