[pacman-dev] [Package Signing] [repo-add] Check signature used to verify is not only good but is also in a list of accepted keys

Denis A. Altoé Falqueto denisfalqueto at gmail.com
Thu Feb 3 20:41:27 EST 2011

Hi, Allan and friends :)

I'm working on the items of the todo list [1] for package signing and
have a question with the item of the subject of this email.

Basically, what should be the list of accepted keys? The keys in
pacman's keyring? Probably yes, isn't it? So the signature is made
with a key from user's keyring (be it the default or one passed as
parameter) and the verifying should be made with pacman's keyring?

Just asking to be sure.

[1] https://wiki.archlinux.org/index.php/User:Allan/Package_Signing

Denis A. Altoe Falqueto
Linux user #524555

More information about the pacman-dev mailing list