How to verify Samba RPM Files?
Jelmer Vernooij
jelmer at samba.org
Wed Oct 22 16:34:01 MDT 2014
Hi Vince,
On Wed, Oct 22, 2014 at 10:15:57PM +0000, Vince George (vincgeor) wrote:
> I have downloaded a RHEL5 release including several Samba RPM files and I want to verify their integrity & authenticity.
>
> It's the first time I am using rpm and ran the two command-lines against a Samba rpm file...
>
> 1st Command-Line: : rpm -K samba3-3.6.24-45.el5.x86_64.rpm
>
> samba3-3.6.24-45.el5.x86_64.rpm: (SHA1) DSA sha1 md5 (GPG) NOT OK (MISSING KEYS: GPG#f4428b1a)
>
> 2nd Command-Line: : rpm -K -v samba3-3.6.24-45.el5.x86_64.rpm
>
> samba3-3.6.24-45.el5.x86_64.rpm:
> Header V4 DSA signature: NOKEY, key ID f4428b1a
> Header SHA1 digest: OK (0ba26692ea1fa6c5fc19d4bf9ae5b5f6b2f8a5dd)
> MD5 digest: OK (3f09dc73be6069fd79b2a32ee6e3b51a)
> V4 DSA signature: NOKEY, key ID f4428b1a
>
> How do I verify the signatures of the Samba RPM? Am I missing some public key file?
This is more of a RHEL-specific question rather than relating specifically to
Samba. http://www.rpm.org/max-rpm/ch-rpm-verify.html seems to have some
documentation, but you could also ask on one of the RedHat mailing lists.
Jelmer
More information about the samba-technical
mailing list