Rawhide signatures
Colin Walters
walters at redhat.com
Tue Jun 22 18:23:57 UTC 2004
On Tue, 2004-06-22 at 20:11 +0200, Enrico Scholz wrote:
> walters at redhat.com (Colin Walters) writes:
>
> >> There is a Fedora rawhide key (key ID 1CDDBCA9 I believe), but it's
> >> really not practical right now to sign the packages, because the
> >> rawhide push is completely automated, and signing requires manually
> >> entering a password.
> >
> > Well you can certainly provide the passphrase programatically, something
> > like:
> >
> > echo "my passphrase" 1>&3 | gpg --passphrase-fd=3 ...
>
> No; rpm does not offer such an interface but expects the passphrase on a
> tty everytime. I solved it for me with an 'expect' wrapper, but it is a
> dirty hack :(
>
> Overall, the gpg support in rpm is poor as it accepts special signatures
> only[1] and there are no (reliable) tools[2] to check signatures based
> on ordinary gpg keyrings (in opposite to current 'Pubkey' table which
> requires root rights).
Ah, yuck :/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20040622/05dcfba6/attachment.sig>
More information about the fedora-devel-list
mailing list