automate rpm signing?

Karanbir Singh mail-lists at karan.org
Wed Nov 22 12:09:05 UTC 2006


Dennis Gilmore wrote:
> On Tuesday 21 November 2006 21:21, Douglas Hubler wrote:
>> The Fedora website
>>  http://fedora.redhat.com/About/security/
>> mentions Fedora builds are automatically signed. How is this done? rpm
>> --addsign requires user input and is not gpg-aware
>>  http://lists.gnupg.org/pipermail/gnupg-users/2004-January/021302.html
> You can automate it by not putting a password on the gpgkey.  most of the rpms 
> are manually signed for this reason.  and all of extras are manually signed.  
> the only automated signed would be in rawhide  and i think they are generally 
> not signed at all.
> 

iirc, even with a blank passwd, rpm's default behavior is to ask for a 
password anyway,

'expect' knows what to do :)

- KB

-- 
Karanbir Singh : http://www.karan.org/ : 2522219 at icq




More information about the Fedora-buildsys-list mailing list