On Thu, Sep 06, 2012 at 11:24:38AM +0200, Ludwig Nussel wrote:
I wonder whether this could be integrated in rpm directly. Something like
Keys: keys.asc Source0: http://www.foo.bar/%name-%version.tar.bz2 Signature0: http://www.foo.bar/%name-%version.tar.bz2.asc
Then rpm (or the download_url servie) could check the signatures automatically.
Signatures in the spec files (be it gpg signatures ore checksums) were discussed on the rpm list some years ago, but nothing happened. Maybe it's time to start that discussion again. Cheers, Michael. -- Michael Schroeder mls@suse.de SUSE LINUX Products GmbH, GF Jeff Hawn, HRB 16746 AG Nuernberg main(_){while(_=~getchar())putchar(~_-1/(~(_|32)/13*2-11)*13);} -- To unsubscribe, e-mail: opensuse-packaging+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-packaging+owner@opensuse.org