Signing RPM packages

Keith Roberts keith at karsites.net
Sat Mar 19 11:48:06 UTC 2011


On Fri, 18 Mar 2011, Stuart D. Gathman wrote:

*snip*

> I highly recommend also making a "release" package (e.g. 
> kroberts-release)
> that installs kroberts.repo in /etc/yum.repos.d and your key file
> in /etc/pki/rpm-gpg.  This can then be updated to add a signing key
> or another repo (e.g. kroberts-testing).

That's a good idea Stuart and something for me to consider 
doing. Does Smart Package Manager also use /etc/pki/rpm-gpg
for checking package signatures?

Kind Regards,

Keith Roberts

-----------------------------------------------------------------
Websites:
http://www.karsites.net
http://www.php-debuggers.net
http://www.raised-from-the-dead.org.uk

All email addresses are challenge-response protected with
TMDA [http://tmda.net]
-----------------------------------------------------------------


More information about the Rpm-list mailing list