Re: examples of signing packages and using signed packages?

To: tech-pkg%netbsd.org@localhost
Subject: Re: examples of signing packages and using signed packages?
From: Joerg Sonnenberger <joerg%britannica.bec.de@localhost>
Date: Wed, 30 Sep 2009 16:17:51 +0200

On Tue, Sep 29, 2009 at 10:30:41PM -0500, Jeremy C. Reed wrote:
> Do we have any examples of creating signed packages?

Decide on GPG or X509, set the various options in pkg_install.conf and
run

pkg_admin gpg-sign-package $package_to_sign $signed_package
or
pkg_admin x509-xsign-package $package_to_sign $signed_package $priv $cert

[there is a bug in the man page for gpg-sign-package, I will fix that]

> Any examples for end users to start using signed packages?

In addition to setting either CERTIFICATE_CHAIN or GPG [and optionally
GPG_KEYRING_VERIFY), you also need to set VERIFIED_INSTALLATION to
request the amount of validation desired.

Joerg

References:
- examples of signing packages and using signed packages?
  - From: Jeremy C. Reed

Prev by Date: mDNSResponder in NetBSD base system
Next by Date: Re: mDNSResponder in NetBSD base system
Previous by Thread: examples of signing packages and using signed packages?
Next by Thread: mDNSResponder in NetBSD base system
Indexes:

Home | Main Index | Thread Index | Old Index