![](https://seccdn.libravatar.org/avatar/a257fa0591438f3c6ad1c8bc48ce0fdc.jpg?s=120&d=mm&r=g)
On Mon, 24 Jul 2017 16:57:56 +0800 George from the tribe wrote:
Can someone tell me if I did this right?
I looked for a package on sofware.opensuse.org that is not in the regular rpms. I found the package I was looking for. I didn't want to do the 1-click install, so I downloaded the package to my downloads directory.
Then, to verify the integrity fo the file, I ran this command:
rpm -K --nosignature TaskCoach-1.4.3-1.1.noarch.rpm
It said the file was bad and failed the signature verification. So, I downloaded it again, and ran the command again, and this time it said the file was good.
Then I downloaded the key for the repo of that package, and imported it with the following:
rpm --import repomd.xml.key
After that, I did a zypper install of the package, and it all installed correctly with no errors or warnings.
Is that the right way to go about it, or would someone suggest a better way?
Hi George, This is what I do, in essence, WRT 'rpm' but without the '-K' flag. (I didn't find it referenced under 'man rpm', either. I checked after you'd piqued :) my interest.) I typically use the following: # rpm -Uhv [packagename].rpm --test The "U" is in case I forget the package is already installed. rpm will upgrade /or/ install it in either case. The "hv" verbose hash marks progress indicator is nice and '--test' simply does a harmless dry run to display any warnings or errors without writing any system changes. hth & regards, Carl -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org