From mboxrd@z Thu Jan 1 00:00:00 1970 From: Andreas Enge Subject: GSoC Date: Wed, 19 Feb 2014 20:38:46 +0100 Message-ID: <20140219193846.GA7986@debian> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:41257) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1WGCyw-0006sz-DR for guix-devel@gnu.org; Wed, 19 Feb 2014 14:39:05 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1WGCyp-0003d7-3X for guix-devel@gnu.org; Wed, 19 Feb 2014 14:38:58 -0500 Received: from moutng.kundenserver.de ([212.227.17.10]:63230) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1WGCyo-0003cy-Px for guix-devel@gnu.org; Wed, 19 Feb 2014 14:38:51 -0500 Content-Disposition: inline List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org To: guix-devel@gnu.org Hello, I still think that an infrastructure based on gnunet for distributing cryptographically signed packages would be interesting. In a nutshell, I would like arbitrary independent instances to inject signed packages into the network. A user could maintain a list of trusted keys and try to download a package signed with one of the keys from the network. Andreas