This is just an update and a thank you to everybody who has voted up to now for feature 312047 of openFATE. Although I share the worry of robin_listas that features should be adopted on technical bases, sometimes a technical base, even if there and easy to implement, is overlooked because awareness is missing “at the right level”. To this extend, I belief that openFATE can make a difference.
When I began to “advertise” this IMO very important feature, there were only 2 votes (the author’s and mine included) after two years that it was out. The decision to get so proactive, I took it because the problem is years old, potentially very troublesome, and is going directly against safe user behavior.
Several threads have been** opened** over the time, always with the same issue. As my argument goes, having available a https-page with the repo keys (ID and fingerprint), will give the users the possibility to act responsible and take the correct attitude. When one is accepting a signing key in order authorize a whole bunch of software to be installed, one should be sure not to give away the integrity of one’s system, without even being able to have the minor control over what happens. Just clicking O.K. and adding a repo signature without controlling for it’s authenticity, is like sending your bank data and passwords to some obscure email address because the latter claims to be your “friendly banker”. No sensed person would do this, why should we expect users to do this to their system.
The measure AFAIK is technically easy to implement… IF the will is there. So to raise awareness I did put this feature in my signature, to give people an idea about its existence.
If you haven’t voted yet, please have at least a look at the feature, think about it with calm. And then if you think you agree, just come back and vote for it.
Thank you to the 22 people who voted since, from only two votes we are now at 23. Still, given the importance of the issue, there should be many more votes, more awareness.
To everybody seasonal greetings.
P.S. life vests in airplanes will not help to avoid the airplane to crash or to sink in the see. But in the few cases where applicable, we still wish to have them. That is why we find them under our seats.