Posted Mar 3, 2013 2:25 UTC (Sun) by rgmoore
In reply to: Michaelsen: One
Parent article: Michaelsen: One
No. They should be using a packaging system that checks the package for them and warns them if the signature comes from an unknown packager. That way they don't have to check signatures manually when installing from any source they've already configured. That's by far the most common use case, so the packaging system should be designed to do the right thing for the user rather than forcing the user to do it manually.
to post comments)