undefined | Better HN

0 pointspabs35y ago0 comments

The packages are not signed, but there is a hash chain from the signed Release files through to the packages themselves.

0 comments

Yes you are right, I stand corrected.

Here is an explanation of the process under 'The current scheme for package signature checks' at the following url

j / k navigate · click thread line to collapse

Yes you are right, I stand corrected.

Here is an explanation of the process under 'The current scheme for package signature checks' at the following url

j / k navigate · click thread line to collapse