[Git-commits] [grml/grml-debian-keyring] 1323d4: move archive keyring out of global trust path
Michael Prokop
mika at grml.org
Fri Jun 1 15:49:16 CEST 2018
Branch: refs/heads/master
Home: https://github.com/grml/grml-debian-keyring
Commit: 1323d48e442a93c81616ec0dd2268427043191be
https://github.com/grml/grml-debian-keyring/commit/1323d48e442a93c81616ec0dd2268427043191be
Author: Antoine Beaupré <anarcat at debian.org>
Date: 2018-02-15 (Thu, 15 Feb 2018)
Changed paths:
M debian/install
A keyrings/grml-archive-keyring.gpg
R keyrings/grml-archive.gpg
Log Message:
-----------
move archive keyring out of global trust path
The [repository instructions][1] have been changed to avoid writing
third-party keyring files to the global trust anchors (in
`/etc/apt/trusted-gpg.d`) and instead write those to a more neutral
location (`/usr/share/keyrings`, alongside other keyring files).
[1]: https://wiki.debian.org/RepositoryInstructions
The downside of this change is that the key fingerprint isn't
validated directly through this process. But considering that
validation of the key is anchored through HTTPS validation in the
first place, we do not *really* lose anything by moving that to the
`.gpg` file transfer: that file's integrity is still checked through
HTTPS. Furthermore, not storing the explicit fingerprint here will
make future key rotations easier as they will not require
documentation updates.
Note that this change will also require a change in the
`grml-debian-keyring` package to install the keyring file in the new
location. If that package does not install a `.sources` or `.list`
file, that move will also break existing configurations, so a NEWS
entry might be in order as well.
This is related to the [proposed website documentation change][2]
[2]: https://github.com/grml/grml.org/pull/21
Commit: dabedf8ea75c226b334db2ab460e5254b31f4cff
https://github.com/grml/grml-debian-keyring/commit/dabedf8ea75c226b334db2ab460e5254b31f4cff
Author: Michael Prokop <mika at grml.org>
Date: 2018-05-26 (Sat, 26 May 2018)
Changed paths:
M md5sums.txt
Log Message:
-----------
Update md5sums.txt for new filename of keyring file
Commit: 0f5d2031e0677bbada96446feaf937cd9643190f
https://github.com/grml/grml-debian-keyring/commit/0f5d2031e0677bbada96446feaf937cd9643190f
Author: Michael Prokop <mika at grml.org>
Date: 2018-05-26 (Sat, 26 May 2018)
Changed paths:
A debian/grml-debian-keyring.postinst
Log Message:
-----------
Provide postinst script for support of older Debian releases
Commit: 323d5dac4e70d9d78d7064517371c756af5ea7f6
https://github.com/grml/grml-debian-keyring/commit/323d5dac4e70d9d78d7064517371c756af5ea7f6
Author: Michael Prokop <mika at grml.org>
Date: 2018-06-01 (Fri, 01 Jun 2018)
Changed paths:
A debian/NEWS
Log Message:
-----------
Provide debian/NEWS for recent changes with new package version
Commit: 894fea922137278783547bb17b6ec305666157ec
https://github.com/grml/grml-debian-keyring/commit/894fea922137278783547bb17b6ec305666157ec
Author: Michael Prokop <mika at grml.org>
Date: 2018-06-01 (Fri, 01 Jun 2018)
Changed paths:
M debian/control
Log Message:
-----------
Bump Standards-Version to 4.1.4
Commit: 521a2e24e4733540bf4af7bde0819c7a213cfc55
https://github.com/grml/grml-debian-keyring/commit/521a2e24e4733540bf4af7bde0819c7a213cfc55
Author: Michael Prokop <mika at grml.org>
Date: 2018-06-01 (Fri, 01 Jun 2018)
Changed paths:
M debian/control
Log Message:
-----------
Build-Depend on debhelper >= 9~
Commit: e10eb720ba1a6b9a66ac3bf27bb69ee1a357071e
https://github.com/grml/grml-debian-keyring/commit/e10eb720ba1a6b9a66ac3bf27bb69ee1a357071e
Author: Michael Prokop <mika at grml.org>
Date: 2018-06-01 (Fri, 01 Jun 2018)
Changed paths:
M debian/compat
Log Message:
-----------
Bump debian/compat to 9
Commit: 3823c7140c815e27a630e7091b73b1daffce1d61
https://github.com/grml/grml-debian-keyring/commit/3823c7140c815e27a630e7091b73b1daffce1d61
Author: Michael Prokop <mika at grml.org>
Date: 2018-06-01 (Fri, 01 Jun 2018)
Changed paths:
M debian/changelog
Log Message:
-----------
Release new version 2018.06.01
Compare: https://github.com/grml/grml-debian-keyring/compare/6eb6a3cde40d...3823c7140c81
**NOTE:** This service been marked for deprecation: https://developer.github.com/changes/2018-04-25-github-services-deprecation/
Functionality will be removed from GitHub.com on January 31st, 2019.
More information about the Git-commits
mailing list