Firefox

20324 readers

255 users here now

/c/firefox

A place to discuss the news and latest developments on the open-source browser Firefox.

Rules

1. Adhere to the instance rules

2. Be kind to one another

3. Communicate in a civil manner

Reporting

If you would like to bring an issue to the moderators attention, please use the "Create Report" feature on the offending comment or post and it will be reviewed as time allows.

founded 5 years ago

MODERATORS

k_o_t@lemmy.ml

golden_zealot@lemmy.ml

packages.mozilla.org: repo-signing-key.gpg (lemm.ee)

submitted 4 months ago by Raginald_Savidge@lemm.ee to c/firefox@lemmy.ml

2 comments fedilink hide all child comments

Hi there,

I wanted to migrate from the default Ubuntu Firefox snap installation to a deb-package-based one using the instructions on the official help site.

I do not just import keys without examining them first, so I had a look at the key from packages.mozilla.org:

pub  rsa2048/C0BA5CE6DC6315A3
     created: 2021-05-04  expires: never       usage: SC  
     trust: unknown       validity: unknown
 [ unknown] (1). Artifact Registry Repository Signer <artifact-registry-repository-signer@google.com>

Now, what I don't understand is the identity containing a reference to Google instead Mozilla: "Artifact Registry Repository Signer artifact-registry-repository-signer@google.com"

Could somebody help me understand that?

Thanks a lot in advance!

you are viewing a single comment's thread
view the rest of the comments

[–] Raginald_Savidge@lemm.ee 3 points 4 months ago

Well, perfect: I'm a Firefox user because I trust Google so much... 😉 ☹️