11 May
2012
11 May
'12
10:16
On Thu, May 10, 2012 at 11:37:23PM +0200, Carlos E. R. wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 2012-05-10 23:34, Brian K. White wrote:
You DON'T trust the kernel update. You trust SUSE. And you trust the key to ensure that you are in fact dealing with SUSE.
Yes, I do trust SUSE. But how can I trust that the repo key I'm importing is really supplied by SUSE and not by a rogue repo owner?
It is supplied by suse because it is in the core repository which is supplied by suse. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org