On Sunday 02 April 2006 07:02, Andrew Robinson wrote: > yum localinstall /usr/src/redhat/RPMS/x86_64/java-1.5.0-sun-* > The usual yum stuff happens until the command dies with this message: > unsigned package java-1.5.0-sun-demo-1.5.0.06-1jpp.x86_64.rpm > Is there a way to tell yum to install an unsigned package or is there > a way to sign these local packages? the answer to both is yes. the easiest means is to temporaily disable gpg checking for yum in /etc/yum.conf. put it back afterwards! alternatively, you could just install the dependencies listed using yum (compat-libs-std-c++ or something like that, IIRC) and then manually install the java rpms afterwards... yum install compat-libs-std-c++ rpm -Uvh java-1.5.0-sun-demo-1.5.0.06-1jpp.x86_64.rpm if you really want to sign the rpms yourself: (all except part3 should be done as the non-privileged user you use to build your rpms. Please don't ever build them as root) 1. generate a key to sign with: mkdir -m700 ~/.gnupg gpg --gen-key fill in all the prompts gpg --list-keys should show your newly generated key, e.g. Stuart Sears (RPM signing key) <stuart@xxxxxxxxxxxxxxxxxx> 2. export this key into an ascii text format gpg --export --armor \ "Stuart Sears (RPM signing key) <stuart@xxxxxxxxxxxxxxxxxx>" \ > stuarts-key.txt incidentally, you only have to give gpg enough info to uniquely identify a key in its keyring, so in my case, as I have only one key whose details contain the word RPM the following would have been fine: gpg --export --armor RPM > stuarts-key.txt 3. (as root) import that key into rpm's keyring: su - rpm --import stuarts-key.txt exit 4. edit ~/.rpmmacros to add %_signature gpg %_gpg_name <paste_your_key_details_here> 5. from then on you can sign your rpms using commands like rpm --resign java-1.5.0-sun-demo-1.5.0.06-1jpp.x86_64.rpm HTH Stuart -- Stuart Sears RHCA, RHCX "It's today!" said Piglet. "My favorite day," said Pooh.
Attachment:
pgpBZhrD34Ow8.pgp
Description: PGP signature
