Signing RPM packages

Keith Roberts keith at
Sat Mar 19 11:48:06 UTC 2011

On Fri, 18 Mar 2011, Stuart D. Gathman wrote:


> I highly recommend also making a "release" package (e.g. 
> kroberts-release)
> that installs kroberts.repo in /etc/yum.repos.d and your key file
> in /etc/pki/rpm-gpg.  This can then be updated to add a signing key
> or another repo (e.g. kroberts-testing).

That's a good idea Stuart and something for me to consider 
doing. Does Smart Package Manager also use /etc/pki/rpm-gpg
for checking package signatures?

Kind Regards,

Keith Roberts


All email addresses are challenge-response protected with

More information about the Rpm-list mailing list