http://bugzilla.opensuse.org/show_bug.cgi?id=1159900
http://bugzilla.opensuse.org/show_bug.cgi?id=1159900#c5
--- Comment #5 from Ulrich Windl ---
While it's mostly an upstream issue I think embedding the signing key in the
update script is a bad idea unless the update script can update itself from a
trusted source. That would kill all customizations, however.
Having to update the package (e.g. "zypper update") just because of a new key
also does not sound right.
So I think it would be best if the signing key to check were kept externally,
and there should be a mechanism to update the key.
Independent of that is the life-time of a key, and what should happen if the
old key already expired. Preferably there should be a significant overlap in
key lifetimes.
--
You are receiving this mail because:
You are on the CC list for the bug.