[arch-general] Updating the archlinux-keyring package
Thomas Bächler
thomas at archlinux.org
Fri Feb 14 07:05:11 EST 2014
Am 14.02.2014 12:43, schrieb Don deJuan:
>>> wouldn't is make more sense to have a systemd timer/cron job to frequently
>>> refresh pacman keyring?
>
> pacman-key --refresh-keys ??
If you are paranoid enough that a former Arch developer or TU will be
able to inject a broken package into a mirror, then it certainly helps
you to run 'pacman-key --refresh-keys' regularly. You can also do so on
the live CD. This will not automatically add new keys, but certainly
remove trust from revoked keys.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 901 bytes
Desc: OpenPGP digital signature
URL: <http://mailman.archlinux.org/pipermail/arch-general/attachments/20140214/45fa2495/attachment.asc>
More information about the arch-general
mailing list