[Yum-devel] Re: yum and gpgcheck feature request
seth vidal
skvidal at phy.duke.edu
Wed Apr 6 18:14:28 UTC 2005
On Wed, 2005-04-06 at 17:19 +0300, Jouni.Lohikoski at iki.fi wrote:
> Hi!
>
> In yum.conf (and yum.repos.d confs) if there is gpgcheck=0, the
> GPG check is not done, and if gpgcheck=1, the check is done if the
> package has been signed by GPG key.
>
> I would like to be sure, when yum automaticly updates packages (over a
> night) no package which hasn't been signed would be installed.
> So gpgcheck=2 would mean the package is GPG-checked, but if the package
> is not even signed the operation would fail as in gpgcheck=1 if there is
> no proper GPG-public key.
>
> Or is there some other way doing this?
I don't even remotely know what you're asking.
if gpgcheck=0 then yum will not check for a gpg key nor for packages to
be signed by any key.
if gpgcheck=1 then yum will check for a package to be signed AND that it
matches a key.
where's the problem?
-sv
More information about the Yum-devel
mailing list