http://bugzilla.suse.com/show_bug.cgi?id=1159900
http://bugzilla.suse.com/show_bug.cgi?id=1159900#c3
Stanislav Brabec changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |CONFIRMED
--- Comment #3 from Stanislav Brabec ---
Thanks for the report.
This problem affects smartmontools-6.6.tar.gz, e. g. Leap 15.*, SLE 15 * and
SLE12 *.
And yes, there are several upstream problems:
- Bi-yearly replacement of signing keys completely invalidate the idea of
trusted online updates.
- And short key validity makes impossible to use the old signing keys as
signing keys for old branches.
I reported it to the upstream https://www.smartmontools.org/ticket/1278
Let's wait, how upstream will fix it. If they are able to sign 6.6 releases
with 2018 key, then we don't need to do anything. If not, we need a fix.
--
You are receiving this mail because:
You are on the CC list for the bug.