KS2011: Kernel.org report
Posted Oct 28, 2011 20:24 UTC (Fri) by giraffedata
Parent article: KS2011: Kernel.org report
Central signing will not be happening anymore; developers will need to sign files - with their own keys - before uploading them. The new web of trust
will allow those signatures to be verified by others.
I don't get this part. Does the web of trust let one verify that the file was signed by a particular individual, or that it was signed by a trustworthy kernel developer? If it's just the former, it seems less valuable than the former automatic kernel.org signature.
to post comments)