I'm working on installing Bacula 15 on RHEL 9.6 with FIPS enabled,
following the instructions available here
(https://www.bacula.org/whitepapers/CommunityInstallationGuide.pdf). It
looks like the GPG key
(https://www.bacula.org/downloads/Bacula-4096-Distribution-Verification-key.asc)
is failing to import since it uses the SHA1 algorithm:
```
[root@granite1 tmp]# rpm --import
Bacula-4096-Distribution-Verification-key.asc
warning: Signature not supported. Hash algorithm SHA1 not available.
error: Bacula-4096-Distribution-Verification-key.asc: key 1 import failed.
[root@granite1 tmp]#
```
I assume that something in the RHEL9/FIPS chain is disallowing the SHA1
algorithm due to security issues. Is there updated information and
keys? Is there a plan to start signing this repo with something more
secure? I'd hate to have to disable GPG for this repo.
Thanks,
Lloyd
--
Lloyd Brown
HPC Systems Administrator
Office of Research Computing
Brigham Young University
http://rc.byu.edu
_______________________________________________
Bacula-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/bacula-users
