https://gist.github.com/fernandoaleman/1376720

 How to sign your custom RPM package with GPG key

这是文件rpm-digital-signature.sh

 #rpm-digital-signature.sh

 # How to sign your custom RPM package with GPG key

 # Step:

 # Generate gpg key pair (public key and private key)

 #

 # You will be prompted with a series of questions about encryption.

 # Simply select the default values presented. You will also be asked

 # to create a Real Name, Email Address and Comment (comment optional).

 #

 # If you get the following response:

 # -----------------------------------------------------------------------

 # We need to generate a lot of random bytes. It is a good idea to perform

 # some other action (type on the keyboard, move the mouse, utilize the

 # disks) during the prime generation; this gives the random number

 # generator a better chance to gain enough entropy.

 # -----------------------------------------------------------------------

 # Open up a separate terminal, ssh into your server and run this command:

 # ls -R /

 gpg --gen-key

 # Step:

 # Verify your gpg keys were created

 gpg --list-keys

 # Step:

 # Export your public key from your key ring to a text file.

 #

 # You will use the information for Real Name and Email you used to

 # create your key. I used Fernando Aleman and faleman@email.com

 gpg --export -a 'Fernando Aleman' > RPM-GPG-KEY-faleman

 # Step:

 # Import your public key to your RPM DB

 #

 # If you plan to share your custom built RPM packages with others, make sure

 # to have your public key file available online so others can verify RPMs

 sudo rpm --import RPM-GPG-KEY-faleman

 # Step:

 # Verify the list of gpg public keys in RPM DB

 rpm -q gpg-pubkey --qf '%{name}-%{version}-%{release} --> %{summary}\n'

 # Step:

 # Configure your ~/.rpmmacros file

 #

 # You can use the following command to edit if you are on the server:

 # vi ~/.rpmmacros

 #

 # %_signature => This will always be gpg

 # %_gpg_path  => Enter full path to .gnupg in your home directory

 # %_gpg_name  => Use the Real Name you used to create your key

 # %_gpbin     => run `which gpg` (without ` marks) to get full path 

 %_signature gpg

 %_gpg_path /root/.gnupg

 %_gpg_name Fernando Aleman

 %_gpgbin /usr/bin/gpg

 # Step:

 # Sign your custom RPM package

 #

 # You can sign each RPM file individually:

 rpm --addsign git-1.7.7.3-.el6.x86_64.rpm

 # Or you can `cd` into your RPMS folder and sign them all:

 rpm --addsign *.rpm

 # Step:

 # Check the signature to make sure it was signed

 #

 # Watch for 'gpg OK' as in this example:

 # git-1.7.7.3-.el6.x86_64.rpm: (sha1) dsa sha1 md5 gpg OK

 rpm --checksig git-1.7.7.3-.el6.x86_64.rpm

 # Tip!

 # Sign package during build

 #

 # To sign a package while it's being built, simply add '--sign'

 rpmbuild -ba --sign git.spec

DIY的RPM包怎么签名呢 How to sign your custom RPM package with GPG key的更多相关文章

  1. DIY的RPM包怎么签名呢 - 笔记

    参考 https://gist.github.com/fernandoaleman/1376720 如果打不开上一个连接,请参考https://www.cnblogs.com/LiuYanYGZ/p/ ...

  2. RPM 包的构建 - 实例

    打包目录 rpm 打包目录有一些严格的层次上的要求. rpm 的版本 <=4.4.x,rpmbuid 工具其默认的工作路径是 /usr/src/redhat.因为权限的问题,普通用户不能制作 r ...

  3. RPM 包的构建 - SPEC 基础知识

    spec 文件 制作 rpm 软件包并不是一件复杂的工作,其中的关键在于编写软件包的 spec 描述文件. 要想制作一个 rpm 软件包就必须写一个软件包描述文件 spec.这个文件中包含了软件包的诸 ...

  4. 使用rpm-build制作nginx的rpm包

    2014-11-27 11:05:49   一.RPM包的分类 RPM有五种基本的操作功能:安装.卸载.升级.查询和验证. linux软件包分为两大类: (1)二进制类包,包括rpm安装包(一般分为i ...

  5. 自学Linux Shell9.2-基于Red Hat系统工具包存在两种方式之一:RPM包

    点击返回 自学Linux命令行与Shell脚本之路 9.2-基于Red Hat系统工具包存在两种方式之一:RPM包 本节主要介绍基于Red Had的系统(测试系统centos) 1. 工具包存在两种方 ...

  6. rpm包的安装,查询,卸载,升级,校验,数据库重建,验证数据包

    rpm命名: 包:组成部分 主包:bind-9.7.1-1.i586.e15.rpm 子包:bind-lib-9.7.1-1.i586.e15.rpm bind-utils-9.7.1-1.i586. ...

  7. 一步步制作RPM包

    一步步制作RPM包 来源 http://blog.51cto.com/laoguang/1103628 一.RPM制作步骤 我们在企业中有的软件基本都是编译的,我们每次安装都得编译,那怎么办呢?那就根 ...

  8. linux 下载rpm包到本地,createrepo:创建本地YUM源

    如何下载rpm包到本地 设置yum安装时,保留rpm包. 1.编辑 /etc/yum.conf 将keepcache的值设置为1; 这样就可以将yum安装时的rpm包保存在 /var/cache/yu ...

  9. 部分rpm包总结描述

    acl-2.2.51-15.el7.x86_64 Commands for Manipulating POSIX(可移植操作系统接口 of unix) Access Control Lists.有ge ...

随机推荐

  1. uva11609(组合数学,快速幂)

    先选人,再从这些人里选一个队长,方案总数:C(i,1)*C(n,i)(其中i从1到n)的总和. 这个公式显然不能在时限内暴力算出来,需要变形和推导出更简单的来. 用到组合数里面这个公式:C(n,k)* ...

  2. 【pandas】pandas.DataFrame.rename()---重置索引名称

    官方文档 github地址 例子: 创建DataFrame ### 导入模块 import numpy as np import pandas as pd import matplotlib.pypl ...

  3. 总结的一些MySQL数据库面试题

    1.sql语句应该考虑哪些安全性? 1.防止sql注入,对特殊字符进行转义,过滤或者使用预编译的sql语句绑定变量. 2.最小权限原则,特别是不要用root账户,为不同的类型的动作或者组建使用不同的账 ...

  4. TP上传图片

    //更新 更新中的话,一定要写那一个if判断 public function update(){ $model = M('link'); $upload = new \Think\Upload();/ ...

  5. [转]【鹅厂网事】全局精确流量调度新思路-HttpDNS服务详解

    小编:对于互联网,域名是访问的第一跳,而这一跳很多时候会“失足”,导致访问错误内容,失败连接等,让我们在互联网上畅游的爽快瞬间消失,而对于这关键的第一跳,鹅厂也在持续深入研究和思考对策,今天小编就邀请 ...

  6. GIT学习地址

    https://www.liaoxuefeng.com/wiki/0013739516305929606dd18361248578c67b8067c8c017b000 git下载:https://gi ...

  7. FreeType 管理字形

    转自:http://blog.csdn.net/hgl868/article/details/7254687 1.字形度量 顾名思义,字形度量是对应每一个字形的特定距离,以此描述如何对文本排版.    ...

  8. 开源JS代码前面加!,+的意义

    我们都知道,函数的声明方式有这两种 function fnA(){alert('msg');}//声明式定义函数 var fnB = function(){alert('msg');}//函数赋值表达 ...

  9. Rozor视图(c#代码与html混合编程原则)

    (1)大括号的匹配原则(就近原则){} (2)html标签有截断c#代码的功能 @*服务器端的注释*@    <!--客户端注释-->

  10. Enable SVM while booted from alternate media (ZT)

    http://www.seedsofgenius.net/uncategorized/solaris-tips-enable-svm-while-booted-from-alternate-media ...