<div dir="ltr"><div class="gmail_default" style="font-family:times new roman,serif;font-size:large">In the rpm-ecosystem mailing list, Michael Schroeder from SUSE <a href="http://lists.rpm.org/pipermail/rpm-ecosystem/Week-of-Mon-20150803/000193.html">brought up that we don't sign the metadata for the rawhide repository</a> and it would be nice if it was signed so that he could be sure that the mirrors didn't "do funny things".</div><div class="gmail_default" style="font-family:times new roman,serif;font-size:large"><br></div><div class="gmail_default" style="font-family:times new roman,serif;font-size:large">Is there a reason we don't sign the rawhide repodata? Forgive me for my ignorance, but do we sign repository metadata at all, and if so, how do we do it I'd like to do that for my own repos too.</div><div><br></div>-- <br><div class="gmail_signature"><div dir="ltr">真実はいつも一つ!/ Always, there's only one truth!<br></div></div>
<font face="yw-402608bc37fe50adb11a5899295781aeb83d248d-e61bcfc31e6814d0c4620b003a45719c--o" style="display: none;"></font></div>