Posted on

Creating a gpg certificate and signing packages

In this lab I create a gpg key for signing the rpm packages I built in the previous lab. Once again, the packages I will be working with are grep and jwhois. 


First of all, I installed these packages:

  1. rpm-sign
  2. gnupg

I created the certificates by running “gpg –gen-key” and answering a few questions like what kind of key I want, size of key, passphrase. Then, I opened the ~/.rpmmacro file and added the following line: %_gpg_name “” After that, I was able to sign my rpms from previous labs with the following command:  rpm --addsign packagefile

Overall, I’d say that signing packages is a painless experience when using the tools described in this post.


Links to my signed rpm files and ASCII key:


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s