Rawhide signatures
Rui Miguel Seabra
rms at 1407.org
Tue Jun 22 22:35:23 UTC 2004
On Tue, 2004-06-22 at 13:45 -0400, Colin Walters wrote:
> On Tue, 2004-06-22 at 12:21 -0400, Elliot Lee wrote:
>
> > There is a Fedora rawhide key (key ID 1CDDBCA9 I believe), but it's really
> > not practical right now to sign the packages, because the rawhide push is
> > completely automated, and signing requires manually entering a password.
>
> Well you can certainly provide the passphrase programatically, something
> like:
>
> echo "my passphrase" 1>&3 | gpg --passphrase-fd=3 ...
This would also be very very bad :)
It would have to be a software that links with an rpm library, reads
passphrase from someplace (maybe even use selinux to restrict who can
read it? :)) and uses it.
Other than that... welcome to the world of ps :)
Rui
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20040622/6b2ea11a/attachment.sig>
More information about the fedora-devel-list
mailing list