Bug ID | 909803 |
---|---|
Summary | dropbox should depend on python-gpgme |
Classification | openSUSE |
Product | openSUSE 12.3 |
Version | Final |
Hardware | Other |
OS | openSUSE 10.2 |
Status | NEW |
Severity | Normal |
Priority | P5 - None |
Component | Security |
Assignee | security-team@suse.de |
Reporter | nick.steeves@shaw.ca |
QA Contact | qa-bugs@suse.de |
Found By | --- |
Blocker | --- |
Created attachment 616975 [details]
trivial patch
Dropbox, in openSUSE-13.2-Oss should depend on python-gpgme so it can verify
the signature of the proprietary binary that this front-end fetches. OpenSUSE
policy is signature verification by default for its own repos, and it provides
a mechanism to download Dropbox, so it seems like this mechanism should inherit
the default policy of signature verification by default.