At 7:59 AM +0100 9/7/05, Paul Howarth wrote: >On Tue, 2005-09-06 at 13:58 -0400, Tony Nelson wrote: >> >> Should I sign the package? (I'd be new to that, also.) >> > >> >Yes. Have you got a GPG key that's available on a public server? >> ... >> >> No. I can make a key. I don't know if I have a public server. I take it >> it's not just a matter of putting my ascii key file on my web site? > >Do that too. > >To put your key on a public keyserver, first configure GPG to use a >keyserver. I put the line: > >keyserver hkp://subkeys.pgp.net > >in my ~/.gnupg/options or ~/.gnupg/gpg.conf file (the two files are >basically equivalent, and the one you have will depend on the version of >gnupg installed when you first used it). > >Then use the --send-keys option of gpg to upload your key (see "man >gpg"). OK, I've made and published a key and put signed packages and the key up, with the spec file changes you suggested (except for including the GPL -- that seems overkill, as the man package itself doesn't seem to include it). I've also run rpmlint on the package (it complains about the 2 sourced scripts, but what can one do). Could you please take one more look, and see if I've done this right? ____________________________________________________________________ TonyN.:' <mailto:tonynelson@xxxxxxxxxxxxxxxxx> ' <http://www.georgeanelson.com/>
