[[Arch Repository now Signed]]

Arch Repository now Signed

As you may or may not know, I have a private package repository with some of the AUR-Packages I use frequently. Since today, I have activated Package-Signing for this Repo.

Adding Key and Repo

To use my repo in the future, you'll have to add my Package-Signing GPG-Key to pacmans trusted keys as follows: 

pacman-key -r 805517CC
pacman-key --lsign-key 805517CC

Afterwards activate signature checks for my Repo by using the following block in /etc/pacman.conf: 

[seiichiro]
SigLevel = Required DatabaseOptional TrustedOnly
Server = http://www.seiichiro0185.org/repo/$arch

My GPG Key

The following Key will be used to sign all packages in my Repository:

805517CC

Key Info: 

pub   rsa2048/805517CC 2016-02-23 [SC]
      Key fingerprint = 25C2 CACA 47F0 396D D760  3424 4B76 20E6 8055 17CC
uid         [ultimate] Stefan Brand (Arch Linux Package Signing Key) <package@seiichiro0185.org>
sub   rsa2048/10014DC6 2016-02-23 [E]

Public Key: 

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v2

mQENBFbL/EkBCADW27Ow7KcdtWWttNkOkE0AAfA5D0btBcbai6dCWvxQkTLqIvx7
YDNeBqAkkVfut1e5UtLVrOE5LDObfW685gr5L6+sv9twSWap5wkSOoQYH+ooClOG
Gs6aFDEtCcgv39/oImkf6kAdAmMfr0Jt7QSEvHaz/URZHKA7+4fDsih2S+fuxnIt
xjfnfjy7ZjBPAhzNSuCWlGhL+7RGSJDmyCFzHUgrVQKBmkj1fW4AsZf76JfKw52n
YbToJ6DDv8Rx3AWm4KZT0OWGrf10oSIbMzDNbFBV0mXTKe4q4lzj4T1tlAjS2zML
Q7/NN7mZsGkpaPeYXBvZPd39bd5SLEpn0V2TABEBAAG0SVN0ZWZhbiBCcmFuZCAo
QXJjaCBMaW51eCBQYWNrYWdlIFNpZ25pbmcgS2V5KSA8cGFja2FnZUBzZWlpY2hp
cm8wMTg1Lm9yZz6JATcEEwEKACEFAlbL/EkCGwMFCwkIBwMFFQoJCAsFFgIDAQAC
HgECF4AACgkQS3Yg5oBVF8zGDQgAh4VIs35ugSJGh37kA7C4x7WU/HYQ/EBubr08
wDz3xcO7KEQPTm5aj20nX0qkva0OnANcrd8t5SOeb7aeqFXvxddjqaHSlT6B43p8
CTOdv4lYyaQwjVbXXIK77YqRKrB1uavkEXxG7aUIoi/CYqjCZWwIXa+BVR4Ju0tr
5L0JCrqjBYZ26U23MKO1+I6YTHC1fNGC8fxYzNra4bcdxMgbj1KA7QS6I1kbiAxv
GJWvYJ2ghcddgyVrKWltCEqPOWkPhA62WCgageYMl6fKrTZw8ejkQKwF5dQgcRfl
7aK/fZmc+xIvppNV5d53aO1pf2uorGdc9R67lHD/vh2INKQ/YbkBDQRWy/xJAQgA
qo5tjL99Z/fBjz8noxVrFLQgP0FBElp2yoWxYNZAR4IngFhvPGhxvpHTujUrEtwA
73qLRoekbxcTg1Un2qq/XJ2A4JeNG5JgmtxMu5qIGn3X9XgOBBWW/dSWI1xiE1fP
XMBzsYPznyl7NFTW6V8su5Xqfk+Pg7Ok2tDWwQEp7nzaUdV/ufWUJITU1ftl0Ny0
S5N/T984jT3gAe8IGLOY+SV9ImfH0YOelAEj8gQ1xm7WXJg3zSyDKIFfFOutp2OF
tj6t1duO7VQcITcqnhK8t1X8G+a6cWVSGvUjToJTtXtFmRzis/YBoex02S3UNL9y
K04SCAP/ob0WCY3fTlWiEQARAQABiQEfBBgBCgAJBQJWy/xJAhsMAAoJEEt2IOaA
VRfM7OYIAND4kDgcp96dzbAlEbIKq3OxeC7IrbedE3KI2HUfduKBngrVX/FC8Y0Z
EXOfr4CpAiLVXhr8cR0FqVCDSph+Ru8IYyA1Aft5iCGzuGVUqsUoaaboFPKONkgO
PxYL43T4SxbMOB3JYawWb3vdW2ol37/RSrVMjkombZn/C0eeSjtH7mU3F+//V9R+
rSnCU77BIAFZA7ZPOgjBNGcZGrDudrQNezI9Nd7o8fU8YkCT3t1Kg7qw7L1+oO4V
BvfFM4+clFJFqNTVlZWwuNSSxLyEw9tADjL8fyoGZ/2p9gswDV2MDUXgtbWTyuv6
fawHn7pjp2LD3DUjEZkCNw5QN2U0Rm4=
=ZpjX
-----END PGP PUBLIC KEY BLOCK-----
Created on 23.02.2016 at 07:36 by Seiichiro
Tags:

Comments

1
Smithd674
07.03.2017 15:19

Really informative article post.Thanks Again. Awesome. cdeacebedkddffdg

2
Arash
27.04.2023 09:28

How can I check what packages are available in this repo?




P F A R D
blog/2016/02/arch_repository_now_signed.txt · Last modified: 23.02.2016 07:36 by Seiichiro
CC Attribution-Share Alike 3.0 Unported
Driven by DokuWiki netcup.de Recent changes RSS feed Valid XHTML 1.0