public inbox for [email protected]
help / color / mirror / Atom feedFrom: Josserand, Jesse F (NE) <[email protected]>
To: Craig Ringer <[email protected]>
Cc: [email protected] <[email protected]>
Subject: RE: public keys
Date: Fri, 20 Nov 2020 03:49:18 +0000
Message-ID: <CY1P110MB0520C32CA869F86A93D7686C96FF0@CY1P110MB0520.NAMP110.PROD.OUTLOOK.COM> (raw)
In-Reply-To: <CAGRY4nyrVSOORjvG5A4ybfN=xuYq8c_5vHGCukQOJSNJy7Uo5w@mail.gmail.com>
References: <CY1P110MB0520995070ECCAC81E6DA93F96E00@CY1P110MB0520.NAMP110.PROD.OUTLOOK.COM>
<CAGRY4nyrVSOORjvG5A4ybfN=xuYq8c_5vHGCukQOJSNJy7Uo5w@mail.gmail.com>
Thank you!
[TekSynap - Technology Moving at the Speed of Thought]<https://www.teksynap.com/;
Jesse F. Josserand | Sr. Systems Architect/SysAdmin/DB Analyst
M: 601-590-0304 | D: 228-469-2019 | [email protected]<mailto:[email protected]>
www.TekSynap.com<https://www.teksynap.com/; | 1760 Reston Parkway, Suite 515, Reston VA 20190
Assigned to GDIT Project, 294 Thames Avenue, Bay St. Louis, MS 39520
[email protected]<mailto:[email protected]>
[Connect with TekSynap on LinkedIn]<https://www.linkedin.com/company/teksynap/;
|
[Save vCard]<https://www.teksynap.com/teksynap_signatures/Jesse_Josserand/?vcard=1;
From: Craig Ringer <[email protected]>
Sent: Thursday, November 19, 2020 8:06 PM
To: Josserand, Jesse F (NE) <[email protected]>
Cc: [email protected]
Subject: Re: public keys
[External: Use caution with links & attachments]
On Fri, Nov 20, 2020 at 1:12 AM Josserand, Jesse F (NE) <[email protected]<mailto:[email protected]>> wrote:
I’m trying to do a cold yum install of postgresql 12 rpm’s, but do not want to use '--nogpgcheck' when doing so.
Where can I get the public keys?
I don't know what you mean by a "cold" install.
The keys are packaged in the repo-rpms.
$ rpm -ql pgdg-fedora-repo
/etc/pki/rpm-gpg
/etc/pki/rpm-gpg/RPM-GPG-KEY-PGDG
/etc/yum.repos.d/pgdg-fedora-all.repo
They're also available from the repository itself:
https://download.postgresql.org/pub/repos/yum/<https://urldefense.us/v2/url?u=https-3A__download....;
The key you want is:
$ gpg --fingerprint 1F16D2E1442DF0F8
pub dsa1024 2008-01-08 [SCA]
68C9 E2B9 1A37 D136 FE74 D176 1F16 D2E1 442D F0F8
uid [ unknown] PostgreSQL RPM Building Project <[email protected]<mailto:[email protected]>>
sub elg2048 2008-01-08 [E]
It should probably be published prominently on yum.postgresql.org<https://urldefense.us/v2/url?u=http-3A__yum.postgresql.org&d=DwMFaQ&c=kBZcWdBOH-UDm7cX7sUnio...; by key-id and fingerprint, so it can be verified somewhat independently of the actual download repos, but AFAICS ( https://www.google.com/search?q=site%3Ayum.postgresql.org+1F16D2E1442DF0F8<https://urldefense.us/...; ) it is not.
so consider filing an issue for that:
https://redmine.postgresql.org/projects/pgrpms/<https://urldefense.us/v2/url?u=https-3A__redmine....;
I also note that nobody's signed the key to attest its validity on the keyservers. That's not necessarily required for rpms, but might be a good idea. When I get a chance to verify it with Devrim via a side channel I'll sign it and push my signature.
view thread (3+ messages)
reply
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Reply to all the recipients using the --to and --cc options:
reply via email
To: [email protected]
Cc: [email protected], [email protected]
Subject: RE: public keys
In-Reply-To: <CY1P110MB0520C32CA869F86A93D7686C96FF0@CY1P110MB0520.NAMP110.PROD.OUTLOOK.COM>
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
This inbox is served by agora; see mirroring instructions
for how to clone and mirror all data and code used for this inbox