| 14 Feb 2019 |
 Maximus | ok | 14:38:16 |
| Maximus | ty for the follow up | 14:38:16 |
 Linda | It just means you'll have to configure it manually. | 14:38:36 |
| Maximus | yep, that's fine | 14:45:54 |
| Maximus | my servers are on Debian, so that won't be a problem. I was just testing on a dev machine | 14:46:11 |
| Maximus | Linda: Thank you very much for doing all the hard work on this - this is very helpful and appreciated | 14:47:01 |
| Linda | Thank you for testing and finding it useful. 😊 | 14:48:06 |
| Linda | Default: false
_Description: Use APT data sources from Matrix.org?
The APT package management system may be configured to download supplemental
packages from the Matrix.org package archives. These packages are digitally
signed with keys from matrix-archive-keyring, but may require software outside
of your system's distribution to either build or function.
.
Packages from these sources may not be up to par with the technical
requirements set in the Debian Policy for distributed packages.
Is this wording any better? | 14:54:37 |
 andrewsh | I’d also say additional, not supplemental, but that’s just me | 14:57:02 |
| Linda | Debian Policy called it supplemental, so I did | 14:57:13 |
| andrewsh | anyway, other than that, it sounds fine to me 🙂 | 14:57:26 |
| andrewsh | I think the audiences for the Policy and for this notice do not necessarily overlap a lot 😃 | 14:57:55 |
| Linda | A small clarification before I wrap this up:
_Description: Use APT data sources from Matrix.org?
The APT package management system may be configured to download supplemental
Debian/Ubuntu packages via the Matrix.org package repository. These packages
are digitally signed with keys from matrix-archive-keyring, but may require
software outside of your system's distribution to either build or function.
.
Packages from these sources may not be up to par with the technical
requirements set in the Debian Policy for this operating system.
| 15:09:04 |
| andrewsh | I think the previous version was better | 15:11:17 |
| andrewsh | (no need to specify it’s Debian/Ubuntu I think) | 15:11:30 |
| Linda | That dialog only triggers for Debian and Ubuntu, I'm afraid. | 15:11:43 |
| Linda | But I agree now, I shouldn't say that because they are not part of the Debian or Ubuntu distributions | 15:12:45 |
| andrewsh | I mean | 15:12:58 |
| andrewsh | yes, first they are not from Debian or Ubuntu | 15:13:06 |
| andrewsh | and then the user likely knows what system they’re running | 15:13:17 |
| andrewsh | so I don’t think there’s a need to reiterate that | 15:13:28 |
| Linda | Good point. Changed it back, thanks. | 15:13:45 |
| Linda | I'm tempted to change
Trust this keyring in APT to authenticate packages?
to
Live dangerous(ly) and trust this keyring in APT to authenticate packages?
| 15:20:27 |
| Linda | _Description: Trust this keyring in APT to verify data sources from anywhere?
You may choose to enable matrix-archive-keyring as a system trusted keyring
for the APT package management system, if you need it in place of the Debian
archive in some situation.
.
Adding keyrings to APT's list of trusted keys is not necessary in most cases,
and may be a risk for your system. Usually, it may be simply enough to use the
"Signed-By" option described on the sources.list(5) manual page.
Ended up with this. | 15:33:24 |
| Linda | Download matrix-archive-keyring_2015.12.09+debian0.8_all.deb | 16:51:05 |
| Linda | Download matrix-archive-keyring_2015.12.09+debian0.8_amd64.build | 16:51:09 |
| Linda | Download matrix-archive-keyring_2015.12.09+debian0.8_amd64.buildinfo | 16:51:12 |
| Linda | Download matrix-archive-keyring_2015.12.09+debian0.8_amd64.changes | 16:51:15 |
| Linda | Download matrix-archive-keyring_2015.12.09+debian0.8.dsc | 16:51:18 |
| Linda | Download matrix-archive-keyring_2015.12.09+debian0.8.tar.xz | 16:51:22 |
