Bernd Bartmann writes:
Why is it not possible to automatically sent out the announcement after the rpms are signed and the MD5 sums are known? Is it possible to trigger an email to the packager after the package is signed? Something like a reminder "package is ready for distribution, please sent out an announcement".
Why even care about MD5 sums? As long as the signature verifies OK that's all you need to know. The signature is really just another sum of the file's contents, that's encrypted by the private key.
Attachment:
pgpaWsFAa65Xj.pgp
Description: PGP signature