Bug 572949

Summary: When "the software is not from a trusted source", there's no way to see what package caused it
Product: [Fedora] Fedora Reporter: Paolo Bonzini <pbonzini>
Component: PackageKitAssignee: Richard Hughes <richard>
Status: CLOSED DUPLICATE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: medium Docs Contact:
Priority: low    
Version: 12CC: jonathan, richard, smparrish
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2010-03-13 02:41:05 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Paolo Bonzini 2010-03-12 12:50:37 UTC 
Description of problem:
Whenever software updates are available from a mix of trusted and untrusted sources, there's no way to see which untrusted package I'm going to update.

Even worse, PolicyKit's prompt "The software is not from a trusted source" gives a bad impression when you have a long list of updates, most of them from Red Hat, in which you cannot spot the untrusted package.  It seems like PackageKit is telling you that Red Hat's packages are untrusted.

One simple solution could be to only install trusted packages if any are available, and force the user to run update again to get untrusted packages.

Version-Release number of selected component (if applicable):
0.5.6-1.fc12
Comment 1 Steven M. Parrish 2010-03-13 02:41:05 UTC 

*** This bug has been marked as a duplicate of bug 569116 ***