> The problem with this idea is that debootstrap can be used:
>
> - to bootstrap on another distribution, which won't have that keyring
> - to bootstrap one Debian or derivative on another, so that keyring
> will be present but not have the right keys in it
> - to bootstrap unstable on stable, so
david b wrote:
> Package: debootstrap
> Severity: wishlist
>
> When building a debian vm, using live-magic etc. it is common to use
> debootstrap.
> When the --keyring argument is omitted, as per the man page, "Release file
> signatures are not checked."
> IMHO this behaviour differs from the 'n
Package: debootstrap
Severity: wishlist
When building a debian vm, using live-magic etc. it is common to use
debootstrap.
When the --keyring argument is omitted, as per the man page, "Release file
signatures are not checked."
IMHO this behaviour differs from the 'normal' use of secure apt (by de
3 matches
Mail list logo
