Well as already stated I was mistaking his post in a way. But still I think its good to point too only support trusted keys atleastr for normal users. I guess they could add an option to in rootmode to ask if not trusted. But personally I am sick and tired of "untrusted" keys both in Linux and on many https:// sites. The more you have to "entyer untrusted" the more you ignore those warnings. So my point was more like get the damn key/certs etc.. in place...