On 2021-07-01 20:19:55 +0000 (+0000), Jeremy Stanley wrote: [...] > > Lets not throw the baby out with the bathwater, shall we? > [...snip bits about the abject horrors of apt-key...] > > This was in response to the linked wiki article you helped edit, > purporting to represent a "best practice" (ye gods how I despise > that term, but let's not go there today) insisting with an RFC 2119 > "MUST" that the key not be placed in /etc/apt/trusted.gpg.d, and > that seems a bit extreme. I get that you were not the author of the > article, but rather merely consulted on it. Still, it seems to have > resulted in people unnecessarily demonizing /etc/apt/trusted.gpg.d > as inherently insecure. [...]
And as soon as I sent this I realized I was confusing you with DKG, apologies for that! -- Jeremy Stanley
signature.asc
Description: PGP signature
