Nick Geoghegan
Results
4
comments of
Nick Geoghegan
In bash, the signature can be checked by doing: ``` # Check if RPM is signed, bail if it is SIGNING_CHECK=$(rpm --verbose --checksig $FILENAME) echo $SIGNING_CHECK | grep -q "key...
Yeah, it would be nice to check the metadata of the RPMs without downloading them - that is difficult, though, unless you can guarantee that all RPMs in the repo...
Same question but for `_TZ3000_okaz9tjs`, which is very problematic