| From: | blacknoz(at)club-internet(dot)fr |
|---|---|
| To: | troels(at)arvin(dot)dk, devrim(at)gunduz(dot)org |
| Cc: | pgadmin-hackers(at)postgresql(dot)org |
| Subject: | Re: 1.2.0 Gold uploaded |
| Date: | 2004-12-01 12:10:16 |
| Message-ID: | mnet1.1101899416.12145.blacknoz@club-internet.fr |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgadmin-hackers |
----Message d'origine----
>A: pgadmin-hackers(at)postgresql(dot)org
>De: Troels Arvin <troels(at)arvin(dot)dk>
>Sujet: Re: [pgadmin-hackers] 1.2.0 Gold uploaded
>Date: Wed, 01 Dec 2004 11:44:31 +0100
>
>On Wed, 01 Dec 2004 10:01:10 +0100, Troels Arvin wrote:
>
>> GPG signatures can be added to existing RPMs. See the "--addsign" rpm
>> parameter.
>
>By the way: It would be nice if Dave's signature were used, as is the case
>for the source tar-balls. Dave: Do you have RPM on your system? - Could
>you add signatures to the RPM files?
mmmh, I'm not sure it's a good solution...
How could Dave be sure that the RPMs he is signing are really the right ones (<thinking while writing>A signed mail from Devrim with MD5s in it would suffice for Dave</thinking while writing>). IMHO it's the packager responsibility to sign its own work and not the project coordinator responsibility.
Devrim, maybe you should take time to sign major releases and let snapshots live unsigned.
Regards,
Raphaël
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Troels Arvin | 2004-12-01 12:19:21 | Re: 1.2.0 Gold uploaded |
| Previous Message | Devrim GUNDUZ | 2004-12-01 11:51:59 | Re: 1.2.0 Gold uploaded |