|
2012-02-21
, 20:18
|
Posts: 3,464 |
Thanked: 5,107 times |
Joined on Feb 2010
@ Gothenburg in Sweden
|
#2
|
|
2012-02-21
, 20:22
|
|
Posts: 3,404 |
Thanked: 4,474 times |
Joined on Oct 2005
@ Germany
|
#3
|
[/list]
- If you use the MeeGo Open Build Service to host your repository, you can enable automatic signing using osc signkey - see the OpenSUSE OBS documentation for more info.
|
2012-02-21
, 20:26
|
Posts: 245 |
Thanked: 915 times |
Joined on Feb 2012
|
#4
|
"Secure APT signatures."
So whats securing my N9!?!?
If devs to lazy set up certs. I dont want such packages installed on my device anyway.
Its there for good reason.
Or just submit a request to publish on apps.formeego.org, as that would be just a click away on the public MeeGo OBS.
|
2012-02-21
, 20:27
|
|
Posts: 2,222 |
Thanked: 12,651 times |
Joined on Mar 2010
@ SOL 3
|
#5
|
"Secure APT signatures."
So whats wrong withg securing my N9!? Do you want to install untrusted sources you should get an crappy android device with lots of Viruses and Malware.
If devs to lazy set up certs. I dont want such packages installed on my device anyway.
Its there for good reason.
The Following User Says Thank You to joerg_rw For This Useful Post: | ||
|
2012-02-21
, 20:31
|
Posts: 3,464 |
Thanked: 5,107 times |
Joined on Feb 2010
@ Gothenburg in Sweden
|
#6
|
Because one of those devs that is "to lazy" is Nokia - this issue breaks one of Nokia's own repositories. If you want that to change, vote for Nokia to fix Bug 978.
Also, setting up Secure APT signing won't actually make much of anything more secure by itself. The root problem is a mistake in Aegis, not some sort of well-thought-out security measure. However, this is the easiest way to curtail the damage.
The problem is that apps.formeego.org prohibits anything other than standalone apps - such as shared libraries - so in many/most cases things that would be eligible for that repository could be and are distributed through Ovi Store instead.
|
2012-02-21
, 20:38
|
Posts: 3,464 |
Thanked: 5,107 times |
Joined on Feb 2010
@ Gothenburg in Sweden
|
#7
|
PFFF, if you don't want those packages installed, you shouldn't install them. Simple as that. Please don't troll here about forcefeeding other users your notion - if anybody else wants to install those packages, it's rather irrelevant if you don't like to install pkgs that can't get installed.
:-(
/j
|
2012-02-21
, 20:43
|
Moderator |
Posts: 5,320 |
Thanked: 4,464 times |
Joined on Oct 2009
|
#8
|
PFFF, if you don't want those packages installed, you shouldn't install them. Simple as that. Please don't troll here about forcefeeding other users your notion - if anybody else wants to install those packages, it's rather irrelevant if you don't like to install pkgs that can't get installed.
:-(
/j
The Following User Says Thank You to jalyst For This Useful Post: | ||
|
2012-02-21
, 20:45
|
Posts: 245 |
Thanked: 915 times |
Joined on Feb 2012
|
#9
|
Well as already stated I was mistaking his post in a way. But still I think its good to point too only support trusted keys atleastr for normal users.
I guess they could add an option to in rootmode to ask if not trusted.
But personally I am sick and tired of "untrusted" keys both in Linux and on many https:// sites. The more you have to "entyer untrusted" the more you ignore those warnings.
So my point was more like get the damn key/certs etc.. in place...
|
2012-02-21
, 21:26
|
|
Posts: 560 |
Thanked: 423 times |
Joined on May 2010
@ Switzerland
|
#10
|
In the upcoming PR1.2 release, the installer contains an issue that will block packages from custom APT repositories from being installed unless they contain Secure APT signatures.
This means that it will become rather complicated to install packages from:
These repositories contain ports of important utilities that are useful for developers and advanced N9 users.
WHAT YOU CAN DO
It's most likely too late to fix this, and Nokia might consider it to be more of a feature than a bug. However, you can still take action:
Last edited by itsnotabigtruck; 2012-02-21 at 19:56.