On Saturday 15 December 2007 16:34:44 Jesse Keating wrote: > Couldn't the repo configs just point to the online version of it, and > have yum download the key when needed? (or if it's already on the file > system use it?)
It is possible afaik, but it is less secure, because yum can not check, whether or not the downloaded key is really the wanted. It would work, if the download url is an https one and there is a good certificate used and yum verifies whether or not the certificate is valid. But imho shipping the gpg keys with mock is less error-prone. Regards, Till
signature.asc
Description: This is a digitally signed message part.
-- Fedora-buildsys-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/fedora-buildsys-list
