On Tue, 22 Jan 2008, 13:02:47 +0100, Adrian Schröter wrote:
On Tuesday 22 January 2008 12:45:54 wrote Michael Schroeder:
Hi build service users,
all top-level projects (e.g. KDE, home:<user>,...) now have their own sign key. Projects further down the hierarchy inherit the sign key.
We'll add some key management functions to the API soon.
This change will lead to popups for the user to trust the new key. YaST and zypper do handle this nicely as far as we tested.
Will these new keys be made publicly available/known to GPG key servers? This would be needed for some other package management tools (like apt-get). Right now, I cannot install the new packages from the mozilla/openSUSE-10.2 repository any more :-( Yes, I have run the command rpm --import http://download.opensuse.org/repositories/mozilla/openSUSE_10.2/repodata/rep... but checking the sigs still complains: rpm -qp /var/cache/apt/archives/mozilla-xulrunner181_1.8.1.11-2.2_i586.rpm -K /var/cache/apt/archives/mozilla-xulrunner181_1.8.1.11-2.2_i586.rpm: (SHA1) DSA sha1 md5 (GPG) NOT OK (MISSING KEYS: GPG#06213bd4) Cheers. l8er manfred --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-buildservice+help@opensuse.org