On 9/22/13, Andrei POPESCU <[email protected]> wrote: > On Du, 18 aug 13, 21:22:59, Zenaan Harkness wrote: >> > Also if I generate my own gpg key and sign the repository using that >> > key, >> > will it get authenticated? > > Yes, if you add the key correctly. > >> But gpg-signing a 30GiB repo, package by package, just to avoid >> warning messages? >> </shudder> > > You don't need to sign each package, only the Packages file, since that > contains checksums for all individual .deb.
Ah. Sounds like a solution to my own problem posted here a month or two ago. Thank you! Very useful to know! > https://wiki.debian.org/SecureApt Thanks again Zenaan -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: http://lists.debian.org/CAOsGNSRE=pfyt7kjb2augu1pa1c-ct9f3reuih4fasupxc2...@mail.gmail.com
