diff mbox

[pacman-dev] Outdated comments in pacman.conf

Message ID CADanPJ875xKvT6ezrdprdRU7y41m983Aq_UvMP2kOFir1GyNMw@mail.gmail.com
State Not Applicable, archived
Headers show

Commit Message

Andrey Azarov July 16, 2017, 8:48 a.m. UTC
Hello!

I found what comments in ls /etc/pacman.conf about signature verification
is out of date:

# By default, pacman accepts packages signed by keys that its local keyring
> # trusts (see pacman-key and its man page), as well as unsigned packages.
> SigLevel    = Required DatabaseOptional
> LocalFileSigLevel = Optional
> #RemoteFileSigLevel = Required


So I propose following changes to make comments consistent with default
settings:

# By default, pacman accepts only packages signed by keys that its local
> keyring trusts (see pacman-key and its man page)
> # The only exclusion is packages from local filesystem, such packages can
> be unsigned
> SigLevel    = Required DatabaseOptional
> LocalFileSigLevel = Optional
> #RemoteFileSigLevel = Required


 I include svn patch in attachments.

With best wishes,
Andrey

Comments

Allan McRae July 16, 2017, 8:55 a.m. UTC | #1
On 16/07/17 18:48, Andrey Azarov wrote:
> Hello!
> 
> I found what comments in ls /etc/pacman.conf about signature verification
> is out of date:
>

This is the copy of pacman.conf provided by Arch Linux, and not the
version in the pacman development repository.  We only handle bugs for
the latter in this list.  File a bug report in the Arch Linux bug
tracker against the pacman package.

Allan
diff mbox

Patch

Index: trunk/pacman.conf.i686
===================================================================
--- trunk/pacman.conf.i686	(revision 300611)
+++ trunk/pacman.conf.i686	(working copy)
@@ -36,8 +36,8 @@ 
 CheckSpace
 #VerbosePkgLists
 
-# By default, pacman accepts packages signed by keys that its local keyring
-# trusts (see pacman-key and its man page), as well as unsigned packages.
+# By default, pacman accepts only packages signed by keys that its local keyring trusts (see pacman-key and its man page)
+# The only exclusion is packages from local filesystem, such packages can be unsigned
 SigLevel    = Required DatabaseOptional
 LocalFileSigLevel = Optional
 #RemoteFileSigLevel = Required
Index: trunk/pacman.conf.x86_64
===================================================================
--- trunk/pacman.conf.x86_64	(revision 300611)
+++ trunk/pacman.conf.x86_64	(working copy)
@@ -36,8 +36,8 @@ 
 CheckSpace
 #VerbosePkgLists
 
-# By default, pacman accepts packages signed by keys that its local keyring
-# trusts (see pacman-key and its man page), as well as unsigned packages.
+# By default, pacman accepts only packages signed by keys that its local keyring trusts (see pacman-key and its man page)
+# The only exclusion is packages from local filesystem, such packages can be unsigned
 SigLevel    = Required DatabaseOptional
 LocalFileSigLevel = Optional
 #RemoteFileSigLevel = Required