gpg rpm signing - auto upgrade

From: Radoslaw Stachowiak (radek@private)
Date: Tue Aug 06 2002 - 02:29:28 PDT

Next in thread: Solar Designer: "Re: gpg rpm signing - auto upgrade"
Reply: Solar Designer: "Re: gpg rpm signing - auto upgrade"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

AFAIK rpm files (/pub/Owl/current/i386/RPMS) are not sgined by pgp/gpg.
I think its a good idea and can help a lot people which dont build from
sources but use precompiled rpm packages.

It can also help to use some kind of automated upgrade procedures (yeah,
i know, i know ;) its not secure :) which is:

1. fetch rpm files (e.g. use mirror command from lftp)
2. check signatures (rpm --checksig) 
3. use rpm -F --test *rpm - to test for conflicts/broken deps
4. do upgrade -F (without --test) or just email admin list of (already
fetched and verified) packages ready to upgrade.

-- 
radoslaw.stachowiak.........................................http://alter.pl/

Next in thread: Solar Designer: "Re: gpg rpm signing - auto upgrade"
Reply: Solar Designer: "Re: gpg rpm signing - auto upgrade"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Sun Jan 15 2006 - 13:43:16 PST