mock: enable gpgcheck for f8 config file
Till Maas
opensource at till.name
Sat Dec 15 19:40:25 UTC 2007
On Saturday 15 December 2007 16:34:44 Jesse Keating wrote:
> Couldn't the repo configs just point to the online version of it, and
> have yum download the key when needed? (or if it's already on the file
> system use it?)
It is possible afaik, but it is less secure, because yum can not check,
whether or not the downloaded key is really the wanted. It would work, if the
download url is an https one and there is a good certificate used and yum
verifies whether or not the certificate is valid. But imho shipping the gpg
keys with mock is less error-prone.
Regards,
Till
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 827 bytes
Desc: This is a digitally signed message part.
URL: <http://listman.redhat.com/archives/fedora-buildsys-list/attachments/20071215/7d8cb66e/attachment.sig>
More information about the Fedora-buildsys-list
mailing list