Comment 30 for bug 638384

Maybe a silly point, but to simplify things, why not just display a disclaimer and prompt when l-m-c _starts_ explaining that the user should check the authenticity of l-m-c and the tarballs if they care about integrity.

If l-m-c, its dependencies and/or the rootfs tarball have been confirmed to be authentic, further authenticity checks are not meaningful.

An option could be supplied to allow frontends to suppress this behaviour (if, for example the frontend has confirmed authenticity by some other means)