Hello! I found what comments in ls /etc/pacman.conf about signature verification is out of date: # By default, pacman accepts packages signed by keys that its local keyring
# trusts (see pacman-key and its man page), as well as unsigned packages. SigLevel = Required DatabaseOptional LocalFileSigLevel = Optional #RemoteFileSigLevel = Required
So I propose following changes to make comments consistent with default settings: # By default, pacman accepts only packages signed by keys that its local
keyring trusts (see pacman-key and its man page) # The only exclusion is packages from local filesystem, such packages can be unsigned SigLevel = Required DatabaseOptional LocalFileSigLevel = Optional #RemoteFileSigLevel = Required
I include svn patch in attachments. With best wishes, Andrey