running yum with --nosignature

[Ed Greshko]

On 06/03/2012 11:37 AM, Ed Greshko wrote:
> On 06/03/2012 11:29 AM, JD wrote:
>> Not really. It is not a fedora rpm, as I stated. 
> No....really....
>
> Even if it is *not* a fedora rpm an unsigned or non-fedora signed rpm will not return
> an error.
>
> An unsigned rpm will simply return the name of the rpm.
>
> A signed rpm will return information about the signing key.
>
> Here is an rpm from OpenSuse....
>
> [egreshko at meimei ~]$ rpm -qp glibc-2.9-4.6.i686.rpm
> warning: glibc-2.9-4.6.i686.rpm: Header V3 RSA/SHA256 Signature, key ID 307e3d54: NOKEY
> glibc-2.9-4.6.i686
>
> Here is an rpm that I build and did not sign.
>
> [egreshko at meimei i686]$ rpm -qp gedit-3.0.5-1.fc15.i686.rpm
> gedit-3.0.5-1.fc15.i686
>

You can even try with -qpvv and get more details.  On the rpm that is not signed
you'd see....

D: gedit-3.0.5-1.fc15.i686.rpm: Header SHA1 digest: OK
(954c4933349557bacb137d0b6b6d6db0f2096032)
gedit-3.0.5-1.fc15.i686

on a signed rpm for which the key exists in key store you'd see

D: zzuf-0.13-4.20100215.fc16.i686.rpm: Header V3 RSA/SHA256 Signature, key ID
a82ba4b7: OK
zzuf-0.13-4.20100215.fc16.i686

on a signed rpm for which the key doesn't exist in key store you'd see

D:   Actual size:      1573302
warning: glibc-2.9-4.6.i686.rpm: Header V3 RSA/SHA256 Signature, key ID 307e3d54: NOKEY
glibc-2.9-4.6.i686

Notice the difference between "OK" and "NOKEY"?


-- 
Never be afraid to laugh at yourself, after all, you could be missing out on the joke
of the century. -- Dame Edna Everage