Re: [Linux-PowerEdge] Missing PGP files for dsu 1.7.0

2019-05-23 Thread isdtor
[EXTERNAL EMAIL] > So apparently, the Dell keys need to be imported in GPG as well as RPM > for DSU, and the bootstrap.cgi hack does that. Auto-importing keys into > GPG is bad (especially without notice); if DSU needs to use GPG to > check, then it should have a private GPG keyring, not use

Re: [Linux-PowerEdge] Missing PGP files for dsu 1.7.0

2019-05-21 Thread Prasun Gera
[EXTERNAL EMAIL] DSU 1.7 has other problems with nfs homes because sudo doesn't get access too the ~/.gpg directory of the user on nfs homes with root squash. This essentially breaks "sudo dsu", which does work with 1.6. On Tue, May 21, 2019 at 11:30 AM Chris Adams wrote: > > [EXTERNAL

Re: [Linux-PowerEdge] Missing PGP files for dsu 1.7.0

2019-05-21 Thread Chris Adams
[EXTERNAL EMAIL] Once upon a time, Chris Adams said: > Right. The correct way is to distribute the key, not expect it to be > installed manually after a "yum update" (I expect an update to work > automatically). So apparently, the Dell keys need to be imported in GPG as well as RPM for DSU,

Re: [Linux-PowerEdge] Missing PGP files for dsu 1.7.0

2019-05-21 Thread Kilian Cavalotti
[EXTERNAL EMAIL] On Tue, May 21, 2019 at 7:22 AM Gregory Matthews wrote: > and am I the only one who hates the idea of running a curl fetch and > piping it directly to a shell AS ROOT!? This is not just bad practice, > its a sackable offence. Yes, this has been brought up numerous times,

Re: [Linux-PowerEdge] Missing PGP files for dsu 1.7.0

2019-05-21 Thread Chris Adams
[EXTERNAL EMAIL] Once upon a time, Gregory Matthews said: > On 20/05/2019 11:46, Ben Argyle wrote: > >I've been informed that I needed to rerun > > > >curl -s https://linux.dell.com/repo/hardware/dsu/bootstrap.cgi | bash > > but this will also write a repo file which breaks things if you >

Re: [Linux-PowerEdge] Missing PGP files for dsu 1.7.0

2019-05-21 Thread Gregory Matthews
and piping it directly to a shell AS ROOT!? This is not just bad practice, its a sackable offence. Ben -Original Message- From: Linux-PowerEdge On Behalf Of Ben Argyle Sent: 20 May 2019 11:10 To: 'linux-poweredge@dell.com' Subject: [Linux-PowerEdge] Missing PGP files for dsu 1.7.0

Re: [Linux-PowerEdge] Missing PGP files for dsu 1.7.0

2019-05-20 Thread Ben Argyle
that upgrading from 1.6.0 to 1.7.0 should just require running yum update? Why doesn't the package include those keys? Ben -Original Message- From: Linux-PowerEdge On Behalf Of Ben Argyle Sent: 20 May 2019 11:10 To: 'linux-poweredge@dell.com' Subject: [Linux-PowerEdge] Missing PGP files

[Linux-PowerEdge] Missing PGP files for dsu 1.7.0

2019-05-20 Thread Ben Argyle
[EXTERNAL EMAIL] >From another thread, which I'm putting here instead (apologies for hijacking >the other one)... # dsu DELL EMC System Update 1.7.0 Copyright (C) 2014 DELL EMC Proprietary. Do you want to import public key(s) on the system (Y/N)? : y Unable to read public file