https://bugzilla.novell.com/show_bug.cgi?id=813705 https://bugzilla.novell.com/show_bug.cgi?id=813705#c13 --- Comment #13 from Bruno Friedmann <bruno@ioda-net.ch> 2013-06-05 09:22:06 UTC --- Glenn, thanks for the effort but there's a trouble with your approach. with your method there's no way to verify the source are really what upstream propose. (Check obs signature verify doc for more information) So if the .spec is still using tar.gz it will be easy to update it to then prefer the upstream bz2 proposed file and then being able to check pgp sha1 md5 signature proposed. Feel free to branch, update and submit patches on obs. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.