On Fri, Apr 28, 2006 at 10:31:33PM +0200, houghi wrote:
On Fri, Apr 28, 2006 at 10:07:06PM +0200, Marcus Meissner wrote:
Please open a bugreport.
Bug 170944 Submitted
Transfered to bug 166011 There I see some info: <quote> - (once) create a GPG key for signing the modified source (or use an existing key) - adapt the packages file with "=Cks: SHA1 <sha1sum>" entries of the RPMs - add META and KEY entries to /content, see URL above - sign /content (gpg --detach-sign -a content) - create /content.key (the above public key used to sign /content) (gpg --export -a -u keyid > content.key) </quote> Is there anybody that can explain to me in babysteps on how to do that? I have never used gpg. So I suppose I do the following: `gpg --gen-key`, 5, 2048, 0, y, name and email, passphrase (Or must this be blank?), generate the key. I then have my key. Now what? houghi -- Nutze die Zeit. Sie ist das Kostbarste, was wir haben, denn es ist unwiederbringliche Lebenszeit. Leben ist aber mehr als Werk und Arbeit, und das Sein wichtiger als das Tun - Johannes Müller-Elmau