From 6743c97383a7c153a61cac8edb327386e4d8d673 Mon Sep 17 00:00:00 2001
From: Pierre Schmitz <pierre@archlinux.de>
Date: Mon, 11 Jun 2012 11:32:05 +0200
Subject: update makepkg.conf and pacman.conf

---
 pacman-multilib.conf | 18 ++++++++----------
 1 file changed, 8 insertions(+), 10 deletions(-)

(limited to 'pacman-multilib.conf')

diff --git a/pacman-multilib.conf b/pacman-multilib.conf
index 696003e..d83def4 100644
--- a/pacman-multilib.conf
+++ b/pacman-multilib.conf
@@ -37,17 +37,15 @@ Architecture = auto
 #CheckSpace
 #VerbosePkgLists
 
-# PGP signature checking
-# NOTE: None of this will work without running `pacman-key --init` first.
-# The compiled in default is equivalent to the following line. This requires
-# you to locally sign and trust packager keys using `pacman-key` for them to be
-# considered valid.
+# By default, pacman accepts packages signed by keys that its local keyring
+# trusts (see pacman-key and its man page), as well as unsigned packages.
 #SigLevel = Optional TrustedOnly
-# If you wish to check signatures but avoid local sign and trust issues, use
-# the following line. This will treat any key imported into pacman's keyring as
-# trusted.
-#SigLevel = Optional TrustAll
-# For now, off by default unless you read the above.
+
+# NOTE: You must run `pacman-key --init` before first using pacman; the local
+# keyring can then be populated with the keys of all official Arch Linux
+# packagers with `pacman-key --populate archlinux`.
+
+# Signature checking does not work within our chroot
 SigLevel = Never
 
 #
-- 
cgit v1.2.3-54-g00ecf