Re: [Cooker] Urpmi bad signature solution
torsdagen den 29 maj 2003 13.54 skrev Han Boetes: Duncan [EMAIL PROTECTED] wrote: On Wed 28 May 2003 09:17, Lonnie Borntreger posted as excerpted below: gpg --keyserver wwwkeys.us.pgp.net --recv-keys 604aa4e4 Then follow the same procedures used for the other keys. That's Oden's key. Han Boetes' key is also missing, but can be imported the same way, if you think you trust him. The terminus-font package is the one I found here, but there are others I see his name attacked to in the two weeks h of change-log archives I keep. There may be others.. http://www.xs4all.nl/~hanb/keys/Handrake.gpg There is a simple way to do this..., why not make a contributers-keys-0.1.noarch.rpm package that people can install that contains all the keys used by the contributers? This particular package should be signed by a MandrakeSoft employee and a valid key. Maybe that package should be maintained by for example vdanen or florin only? Well..., anyhow, here's my key: http://www.deserve-it.com/Cooker/.oden.eriksson.gpg -- Regards // Oden Eriksson, Deserve-IT.com
Re: [Cooker] Urpmi bad signature solution
On Thu 29 May 2003 04:54, Han Boetes posted as excerpted below: Duncan [EMAIL PROTECTED] wrote: That's Oden's key. Han Boetes' key is also missing, http://www.xs4all.nl/~hanb/keys/Handrake.gpg Thanks! (And thanks for your packages too.) -- Duncan - List replies preferred. They that can give up essential liberty to obtain a little temporary safety, deserve neither liberty nor safety. Benjamin Franklin
Re: [Cooker] Urpmi bad signature solution
There is a simple way to do this..., why not make a contributers-keys-0.1.noarch.rpm package that people can install that contains all the keys used by the contributers? This particular package should be signed by a MandrakeSoft employee and a valid key. Maybe that package should be maintained by for example vdanen or florin only? This is a good idea. But I think a real web of trust should be set up. Not for today, but, for the future, when more and more developpers will have access to contribs. This would help to ensure of the identity of the contributers. -- Mickaƫl Scherer
Re: [Cooker] Urpmi bad signature solution
On Wed, 2003-05-28 at 04:40, [EMAIL PROTECTED] wrote: Below procedure works for the most packages, but there are still a lot rpm's with key ID 604aa4e4 wich can't be exported: # rpm -Fvh *rpm warning: apache2-2.0.45-5mdk.i586.rpm: V3 DSA signature: NOKEY, key ID 604aa4e4 This grows up when I query through all rpm's. Is there any way to fix this also or do we have to wait for new correct rpm's ? gpg --keyserver wwwkeys.us.pgp.net --recv-keys 604aa4e4 Then follow the same procedures used for the other keys. Lonnie
Re: [Cooker] Urpmi bad signature solution
onsdagen den 28 maj 2003 18.17 skrev Lonnie Borntreger: On Wed, 2003-05-28 at 04:40, [EMAIL PROTECTED] wrote: Below procedure works for the most packages, but there are still a lot rpm's with key ID 604aa4e4 wich can't be exported: # rpm -Fvh *rpm warning: apache2-2.0.45-5mdk.i586.rpm: V3 DSA signature: NOKEY, key ID 604aa4e4 This grows up when I query through all rpm's. Is there any way to fix this also or do we have to wait for new correct rpm's ? gpg --keyserver wwwkeys.us.pgp.net --recv-keys 604aa4e4 Then follow the same procedures used for the other keys. Lonnie Bad guys can sign their packages too and upload their keys to a key server with a fake name. No doubt someone will discover this, but it will be too late for you. -- robin
Re: [Cooker] Urpmi bad signature solution
On Wed, 2003-05-28 at 17:50, Robin Rosenberg wrote: onsdagen den 28 maj 2003 18.17 skrev Lonnie Borntreger: On Wed, 2003-05-28 at 04:40, [EMAIL PROTECTED] wrote: Below procedure works for the most packages, but there are still a lot rpm's with key ID 604aa4e4 wich can't be exported: # rpm -Fvh *rpm warning: apache2-2.0.45-5mdk.i586.rpm: V3 DSA signature: NOKEY, key ID 604aa4e4 This grows up when I query through all rpm's. Is there any way to fix this also or do we have to wait for new correct rpm's ? gpg --keyserver wwwkeys.us.pgp.net --recv-keys 604aa4e4 Then follow the same procedures used for the other keys. Lonnie Bad guys can sign their packages too and upload their keys to a key server with a fake name. No doubt someone will discover this, but it will be too late for you. -- robin But we know Oden is Oden, and Oden will (i'm sure) tell you that that's his key. Go ask him. :) -- adamw
Re: [Cooker] Urpmi bad signature solution
On Wed 28 May 2003 09:17, Lonnie Borntreger posted as excerpted below: gpg --keyserver wwwkeys.us.pgp.net --recv-keys 604aa4e4 Then follow the same procedures used for the other keys. That's Oden's key. Han Boetes' key is also missing, but can be imported the same way, if you think you trust him. The terminus-font package is the one I found here, but there are others I see his name attacked to in the two weeks of change-log archives I keep. There may be others.. -- Duncan - List replies preferred. They that can give up essential liberty to obtain a little temporary safety, deserve neither liberty nor safety. Benjamin Franklin
Re: [Cooker] Urpmi bad signature solution
Duncan [EMAIL PROTECTED] wrote: On Wed 28 May 2003 09:17, Lonnie Borntreger posted as excerpted below: gpg --keyserver wwwkeys.us.pgp.net --recv-keys 604aa4e4 Then follow the same procedures used for the other keys. That's Oden's key. Han Boetes' key is also missing, but can be imported the same way, if you think you trust him. The terminus-font package is the one I found here, but there are others I see his name attacked to in the two weeks h of change-log archives I keep. There may be others.. http://www.xs4all.nl/~hanb/keys/Handrake.gpg # Han -- http://www.xs4all.nl/~hanb/software http://www.xs4all.nl/~hanb/documents/quotingguide.html
Re: [Cooker] Urpmi bad signature solution
Below procedure works for the most packages, but there are still a lot rpm's with key ID 604aa4e4 wich can't be exported: # rpm -Fvh *rpm warning: apache2-2.0.45-5mdk.i586.rpm: V3 DSA signature: NOKEY, key ID 604aa4e4 This grows up when I query through all rpm's. Is there any way to fix this also or do we have to wait for new correct rpm's ? Regards Udo Am Dienstag, 27. Mai 2003 23:58 schrieb MEISCH,CORY (HP-Vancouver,ex1): Perfect! Thank you. -Original Message- From: Adam Williamson [mailto:[EMAIL PROTECTED] Sent: Tuesday, May 27, 2003 2:45 PM To: [EMAIL PROTECTED] Subject: Re: [Cooker] Urpmi bad signature solution On Tue, 2003-05-27 at 22:36, MEISCH,CORY (HP-Vancouver,ex1) wrote: Did we ever determine what is the correct procedure for fixing the 'bad signature' error messages for 1/2 the packages that get installed? # gpg --export -a 22458A98 22458A98.asc # gpg --export -a 70771ff3 70771ff3.asc # gpg --export -a 9B4A4024 9B4A4024.asc # rpm --import *.asc
[Cooker] Urpmi bad signature solution
Did we ever determine what is the correct procedure for fixing the 'bad signature' error messages for 1/2 the packages that get installed? TIA, Cory Meisch CPEA Test Technician Hewlett-Packard Vancouver (360) 212-7009 [EMAIL PROTECTED] --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.483 / Virus Database: 279 - Release Date: 5/19/2003
Re: [Cooker] Urpmi bad signature solution
On Tue, 2003-05-27 at 22:36, MEISCH,CORY (HP-Vancouver,ex1) wrote: Did we ever determine what is the correct procedure for fixing the 'bad signature' error messages for 1/2 the packages that get installed? # gpg --export -a 22458A98 22458A98.asc # gpg --export -a 70771ff3 70771ff3.asc # gpg --export -a 9B4A4024 9B4A4024.asc # rpm --import *.asc -- adamw
RE: [Cooker] Urpmi bad signature solution
Perfect! Thank you. -Original Message- From: Adam Williamson [mailto:[EMAIL PROTECTED] Sent: Tuesday, May 27, 2003 2:45 PM To: [EMAIL PROTECTED] Subject: Re: [Cooker] Urpmi bad signature solution On Tue, 2003-05-27 at 22:36, MEISCH,CORY (HP-Vancouver,ex1) wrote: Did we ever determine what is the correct procedure for fixing the 'bad signature' error messages for 1/2 the packages that get installed? # gpg --export -a 22458A98 22458A98.asc # gpg --export -a 70771ff3 70771ff3.asc # gpg --export -a 9B4A4024 9B4A4024.asc # rpm --import *.asc -- adamw --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.483 / Virus Database: 279 - Release Date: 5/19/2003 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.483 / Virus Database: 279 - Release Date: 5/19/2003