[CentOS] Howto batch sign RPM packages?

Patrick Lists centos-list at puzzled.xs4all.nl
Fri Dec 10 11:22:14 UTC 2010


On 12/10/2010 11:05 AM, John Doe wrote:
> From: Patrick Lists <centos-list at puzzled.xs4all.nl>
> 
>> I need to sign a bunch of RPM packages that have  interdepencies:
>> build #1, sign #1, install #1, build #2, sign #2, install #2  etc.
>> Now I don't want to type in a rather long and  difficult passphrase every
>> time one of dozens of packages need to be signed  and I also don't want
>> to temporarily remove the passphrase so am looking for  a better solution
>> that works unattended after giving the passphrase  once.
>> I looked at gpgwrap (part of pgp-tools in Fedora) but from the docs  I
>> could not figure out how to make that work.
>> Anyone know howto set  this up?
> 
> What about: '--passphrase-file file' ?

Excellent suggestion which obviously I missed in the gpg manpage.
Probably because I was focused on --passphrase-fd n in combination with
gpgwrap.

Thanks!
Patrick



More information about the CentOS mailing list