blob: 6a341f868ddf30524c58bbdbd8bb82e3be8f33e4 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
|
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<TITLE> [Mageia-dev] Proposed Feature: RepositorySignatures
</TITLE>
<LINK REL="Index" HREF="index.html" >
<LINK REL="made" HREF="mailto:mageia-dev%40mageia.org?Subject=Re%3A%20%5BMageia-dev%5D%20Proposed%20Feature%3A%20RepositorySignatures&In-Reply-To=%3C20120605151052.GY21938%40mars-attacks.org%3E">
<META NAME="robots" CONTENT="index,nofollow">
<META http-equiv="Content-Type" content="text/html; charset=us-ascii">
<LINK REL="Previous" HREF="016184.html">
<LINK REL="Next" HREF="016193.html">
</HEAD>
<BODY BGCOLOR="#ffffff">
<H1>[Mageia-dev] Proposed Feature: RepositorySignatures</H1>
<B>nicolas vigier</B>
<A HREF="mailto:mageia-dev%40mageia.org?Subject=Re%3A%20%5BMageia-dev%5D%20Proposed%20Feature%3A%20RepositorySignatures&In-Reply-To=%3C20120605151052.GY21938%40mars-attacks.org%3E"
TITLE="[Mageia-dev] Proposed Feature: RepositorySignatures">boklm at mars-attacks.org
</A><BR>
<I>Tue Jun 5 17:10:52 CEST 2012</I>
<P><UL>
<LI>Previous message: <A HREF="016184.html">[Mageia-dev] [changelog] [RPM] cauldron core/release bcd-3.7-1.mga3
</A></li>
<LI>Next message: <A HREF="016193.html">[Mageia-dev] mplayer vdpau backend broken
</A></li>
<LI> <B>Messages sorted by:</B>
<a href="date.html#16186">[ date ]</a>
<a href="thread.html#16186">[ thread ]</a>
<a href="subject.html#16186">[ subject ]</a>
<a href="author.html#16186">[ author ]</a>
</LI>
</UL>
<HR>
<!--beginarticle-->
<PRE>= Summary =
The packages in the repository are signed, but metadata are currently
not signed. This feature would add metadata signatures on the
repository, and create tools to check them.
= Detailed Description =
The packages on the repository are signed with PGP. However, the
repository metadata are not currently signed. This includes :
* the hdlists
* the list of media, and PGP key to use to check the packages
* installer files used for network installs
This feature can be implemented in different steps :
== Publish checksum of important files on the mirrors ==
This will be done by sysadmin team. The mageia build system will be
modified to generate a file containing sha1sum of important files
on the mirror :
* media.cfg file
* media_info/MD5SUM and media_info/pubkey files for each repository.
Those files contain the checksums of the hdlists files, and the public
key used to check the package signatures.
* timestamp file, containing the date of the last update of the mirror
* installer files
This file will be signed using Mageia PGP key.
== Mirror integrity check tool ==
A tool to check a mirror integrity will be created. It should be able
to check all the mirror content, or only some medias.
== Integration in MGA::Mirror ==
The mirror integrity check will be integrated in Mga::Mirror so that
incorrect or outdated mirrors are automatically removed from
mirrorslist.
== Integration in urpmi ==
Urpmi will be updated to check the metadata signatures when updating
medias.
== Integration in installer ==
The installer will be updated to check the signature of stage2
downloaded from the server.
<A HREF="https://wiki.mageia.org/en/Feature:RepositorySignatures">https://wiki.mageia.org/en/Feature:RepositorySignatures</A>
</PRE>
<!--endarticle-->
<HR>
<P><UL>
<!--threads-->
<LI>Previous message: <A HREF="016184.html">[Mageia-dev] [changelog] [RPM] cauldron core/release bcd-3.7-1.mga3
</A></li>
<LI>Next message: <A HREF="016193.html">[Mageia-dev] mplayer vdpau backend broken
</A></li>
<LI> <B>Messages sorted by:</B>
<a href="date.html#16186">[ date ]</a>
<a href="thread.html#16186">[ thread ]</a>
<a href="subject.html#16186">[ subject ]</a>
<a href="author.html#16186">[ author ]</a>
</LI>
</UL>
<hr>
<a href="https://www.mageia.org/mailman/listinfo/mageia-dev">More information about the Mageia-dev
mailing list</a><br>
</body></html>
|
