[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: FC6 clean install - yum missing keys?

From: Paul Howarth <paul city-fan org>
To: For users of Fedora Core releases <fedora-list redhat com>
Subject: Re: FC6 clean install - yum missing keys?
Date: Wed, 25 Oct 2006 09:11:12 +0100

On Tue, 2006-10-24 at 20:48 -0700, Wolfgang S. Rupprecht wrote:
> I just did a FC6/x86_64 clean install.  I then tried "yum update" as
> root and it also wanted to load new keys.
> 
>     # yum update
>     ...
>     Total download size: 20 M
>     Is this ok [y/N]: y
>     Downloading Packages:
>     warning: rpmts_HdrFromFdno: Header V3 DSA signature: NOKEY, key ID 4f2a6fd2
>     Importing GPG key 0x4F2A6FD2 "Fedora Project <fedora redhat com>"
>     Is this ok [y/N]: n
> 
> Needless to say this rang warning bells.  Why would a fresh install
> need to install some previously unknown keys?  If they keys are legit,
> shouldn't they have been loaded at the factory (so to speak)???

A cleam install has no public keys in the RPM database.

> The worst aspect of this is that it trains users to blindly press "y"
> when presented with questions that have strong security implications.
> How is the average user supposed to even know if that request is legit
> or not?

A good point but at least it's consistent, in that the official repos
need their keys importing just like a third party repo would.

Paul.

References:
- FC6 clean install - yum missing keys?
  - From: Wolfgang S. Rupprecht

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]