On Wed, Dec 03, 2003 at 03:07:17AM +0100, Goswin von Brederlow wrote: > But this kind of tampering _can_ be checked by apt before installing > the deb simply by adding a signature verifyer into the > DPkg::Pre-Install-Pkgs config option, the same mechanism > apt-listchanges already uses to display only the new section of the > changelog.
Indeed, apt can do a lot better, and is very close to doing so. See #203741. -- - mdz
