On 13.Jun.2013, at 13:14, James Hogarth wrote: >> I am wondering why this import is not happening automatically at install >> time. There must be good reasons for that? >> >> > Anaconda doesn't actually carry out gpg checks... I think it had that added > during the fedora 18/19 rewrite so EL7 might cover that but certain EL5 and > EL6 won't have that … It makes sense then. Since anaconda does not check the signature of the centos-release rpm it can not ensure that the contained public key is not faked and leaves this exercise to the user. I think I am getting a little confused about these trust things. How am *I* supposed to verify the validity of those public keys. -- Markus _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: automatic import of rpm keys
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: automatic import of rpm keys
- From: Markus Falb <wnefal@xxxxxxxxx>
- Date: Fri, 14 Jun 2013 13:14:50 +0200
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <CAGkb5vcdOQUL1iRErLMt2fu+stD0nkAD1VN+Nop7Y=bKuvy_2A@mail.gmail.com>
- Follow-Ups:
- Re: automatic import of rpm keys
- From: James Hogarth
- Re: automatic import of rpm keys
- References:
- automatic import of rpm keys
- From: Markus Falb
- Re: automatic import of rpm keys
- From: James Hogarth
- automatic import of rpm keys
- Prev by Date: Re: IPA Client Install
- Next by Date: Re: automatic import of rpm keys
- Previous by thread: Re: automatic import of rpm keys
- Next by thread: Re: automatic import of rpm keys
- Index(es):
 |