Comment 10 for bug 1288593

Revision history for this message
Steve Langasek (vorlon) wrote :

I'm marking this invalid for the ubuntu-cdimage project. The cdimage team considers this wiki page redundant with the gpg-signed SUMS files that we already publish via releases.ubuntu.com and cdimage.ubuntu.com. Correctly verifying a trust path with gpg is not great for usability, but given that the SSL CA regime is known to be exploitable, I don't think we should encourage users to rely on it.

And if the docs team (who I believe is the party owning help.ubuntu.com) disagrees, they can continue to maintain this wiki page - but in any event this isn't a bug for the ubuntu-cdimage project, as the active members of ubuntu-cdimage don't have write access to this wiki page anyway.