On Sunday 13 February 2011 02:43:58 Jeff Johnson wrote: > On Feb 12, 2011, at 1:48 PM, Jeff Johnson wrote: > > Note that the non-repudiable signature (i.e. rpmbuild automatically signs > > every package using DSA) in rpm-5.3.4+ is also needed for the --import to > > become FULLY equivalent to using %pubkey. It is RPMTAG_PUBKEY (tied to > > %pubkey in *.spec recipes) that is being used for the non-repudiable > > automagic DSA signature distribution. > > And my claim that rpm-5.3.8 w %pubkey is equivalent to --import > is almost but not quite true.
No problem, I've managed to put the 'rpm --import' command out of rpm package scripts. To say it all, openmamba is currently providing just signed repositories through smart and apt, this does not require the pubkey in the rpm db though some time ago I made an attempt to sign packages but had unresolved problems at automatically signing packages from a cron script: $ rpm --addsign /var/ftp/pub/openmamba/devel- silvan/RPMS.i586/apturl-0.4.1-1mamba.i586.rpm Inserire la pass phrase: AFAIR I made a script using 'expect' and other attempts but though it all worked from a terminal it didn't as a cron job because of things like missing console. I think this is more a gnupg issue (/feature) than rpm but if someone has a solution for this I'd be glad to hear. In fact the problem is that I'm trying to automatically do something that gnupg doesn't want to be done automatically. Thanks. Silvan -- mambaSoft di Calarco Silvan Web: http://www.mambasoft.it mambaSoft Store @ http://www.mambastore.it openmamba GNU/Linux development @ http://www.openmamba.org ______________________________________________________________________ RPM Package Manager http://rpm5.org Developer Communication List rpm-devel@rpm5.org
