Previously Sarel Botha wrote: > No security measure is perfect, including RedHat's but that's no reason to not > implement it. Why not do it like RedHat rather than not doing it at all? Because just signing everything that is on ftp.debian.org automatically will create a false sense of security, which is even worse. Wichert (who knows that we will support multiple verification methods within a year :). -- ============================================================================== This combination of bytes forms a message written to you by Wichert Akkerman. E-Mail: wichert@cs.leidenuniv.nl WWW: http://www.wi.leidenuniv.nl/~wichert/
Attachment:
pgp2FFNY9eois.pgp
Description: PGP signature