[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re:

From: Per Arnold Blaasmo <Per-Arnold Blaasmo atmel com>
To: RPM Package Manager <rpm-list redhat com>
Subject: Re:
Date: Thu, 09 Oct 2008 08:38:01 +0200

 wrote:
> &lt;div class="moz-text-flowed" style="font-family:
> -moz-fixed"&gt;Well 2004 was a long time ago. Times have changed too ...
> <br>
> <br>FWIW, rpm-5 uses keyutils to store passphrases.
> <br>
> <br>Which means that its possible to us keyutils to manage
> <br>a persistent session pass phrase, loaded before rpm is invoked,
> <br>and the passphrase will be passed to gpg for signinging packages.
> <br>
> <br>But you can attempt signing without a pass phrase if you want too.
> <br>
> <br>73 de Jeff
> <br>
> <br>On Oct 7, 2008, at 7:26 PM, Aaron Hanson wrote:
> <br>
> <br><blockquote
> type=cite>https://www.redhat.com/archives/rpm-list/2004-March/msg00109.html
> <br>
> <br><blockquote type=cite>-----Original Message-----
> <br>From: rpm-list-bounces redhat com [mailto:rpm-list-bounces redhat com]
> <br>On Behalf Of Lev Lvovsky
> <br>Sent: Tuesday, October 07, 2008 4:18 PM
> <br>To: rpm-list redhat com
> <br>Subject: signing RPMs without a passphrase?
> <br>
> <br>Is it possible to sign an RPM without being asked the passphrase for
> <br>the signing key?&nbsp; It hampers automated RPM creation to be
> asked for
> <br>the passphrase when building them.&nbsp; Otherwise, is the only other
> <br>option just batch signing the RPMs after they've been created?
> <br>
> <br>thanks,
> <br>-lev
> <br>
> <br>_______________________________________________
> <br>Rpm-list mailing list
> <br>Rpm-list redhat com
> <br>https://www.redhat.com/mailman/listinfo/rpm-list
> <br></blockquote>
> <br>_______________________________________________
> <br>Rpm-list mailing list
> <br>Rpm-list redhat com
> <br>https://www.redhat.com/mailman/listinfo/rpm-list
> <br></blockquote>
> <br>
> <br>&lt;/div&gt;<br></body>
> </html>
> </html>
I use a bash shell to build RPMS and to make that acceept a password for
GPG i use:

    # Using 'echo "<password>" | setsid ..' to make rpmbuild take "" as
input to GPG key password.
    echo "<password>" | setsid rpmbuild <build_options> --sign
${HOME}/rpmbuild/SPECS/<package>.spec

This works for automating the build process.

Regards
Per A.

References:
- signing RPMs without a passphrase?
  - From: Lev Lvovsky
- RE: signing RPMs without a passphrase?
  - From: Aaron Hanson
- Re: signing RPMs without a passphrase?
  - From: Jeff Johnson

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]