-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Oden Eriksson wrote on Mon, Jan 27, 2003 at 02:47:29AM +0100 :
> > The following packages have bad signatures:
> > /home/Mandrake/contrib/RPMS/chkrootkit-0.38-2mdk.i586.rpm
> > I hope this is just a bad signature. Can someone enlighten me? This is one
> > package that must be trusted to be useful.
> I have my key at: http://d-srv.com/Cooker/
> Still to this day I can't really figure out why Mandrake seems to lack my
> key... (?)
Vincent will correct me if I'm wrong, but there are only three keys that
are used to officially sign packages in Main. Those three keys get
installed automatically into root's keyring when the gnupg package is
installed. If a developer happens to also package some Contrib rpm, the
sig will be good. If a community contributor packages the Contrib rpm,
then the end user who's installing it must go and manually retrieve
(just once) the packager's public key.
Blue skies... Todd
- --
MandrakeSoft USA http://www.mandrakesoft.com
cat /boot/vmlinuz > /dev/dsp #for great justice
Mandrake Cooker Devel Version, Kernel 2.4.20-2mdk
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQE+NaqGlp7v05cW2woRAnGuAJwMMSn+dO8w4Jmj/+txksKN/Df8gQCfYhMh
2g4lGTn9oQKcC0kL9fi1Mmw=
=U7lH
-----END PGP SIGNATURE-----
