Hi
I just fell into the very same trap.
I suggest you do the following:
a) make crystal clear in the packages description (as shown by aptitude)
that this has nothing to do with secure-apt.
"This tool inspects and verifies package signatures based on predetermined
policies." sounds just like "use this if you want packages verified".
b) ensure that installing the package doesn't break the whole package system
If this is a problem of dpkg, fine, but please do something about it.
It's really confusing.
Especially if debsig-verify is just one of a lot of packages to be
installed, the installation fails from some point on and you get many many
error messages. At first I wasn't even sure which package needed to be
uninstalled. debsig-verify? dpkg-sig? (I think there was another one that
seemed to have something to do with package signing)
Thomas
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
