Importing Public Keys

First, however, you will need to make sure that you have the signer's public key. The digital signature was encrypted with the software distributor's private key. That distributor is the signer. Once you have that signer's public key, you can check any data you receive from them. In the case of software repositories like Fedora, rpm.livna.org, or freshrpms.net, you will be asked to install their public key the first time you try to install any software from their site. Once the key is installed, you do not have to install it again. With Yum, this is usually just a prompt to install the key, requesting a y or n confirmation, or a dialog requesting an OK click. Repositories like Livna and Fresprms.net will include their keys with their Yum configuration packages. You can also, if you wish, download and install them manually from their Web sites.

In the case of a software distributor, you can download their public key from their Web site or from their keyserver. Once you have their public key, you can check any software they distribute.

As noted previously, you can download the Red Hat public key from the Red Hat Web site security resources page or use the version installed in the RPM documentation directory. Once you have obtained the public key, you can add to your keyring with the - import option, specifying the name you gave to the downloaded key file (in this case, myredhat.asc):

0 0

Post a comment