Miroslav Suchý writes:
Dne 03. 05. 21 v 0:18 Sam Varshavchik napsal(a):Yes, I'm replying to this old thread. See it in the list archives. And, since then, doesn't look much has changed. Old pgp keys are still gathering dust, in everyone's rpm databases.I had nothing else to do this lazy Sunday afternoon, so I finally decided to do something about it. This cleaned up over 40 old PGP keys from one of my laptop:https://github.com/svarshavchik/clean-rpm-gpg-pubkeyYou inspired me to do:https://github.com/xsuchy/fedora-upgrade/commit/ 138fa54b62c633c6435a86eaf53b0ed44ae48fe5Although I chosen to remove only enumerated keys.
Yeah, so: 1) Someone has to remember to do this as part of every release 2) This doesn't do anything about add-on repositories' keys 3) I had pgp keys going all the way to F19, etc…My approach is slightly awkward -- having to manually parse the conf files and perform release and arch substitution. But it has the advantage of pretty much figuring everything out. It also did me a favor and found some old conf files on one of my servers, that ages ago I used – my dim recollection – to do an upgrade from a throwaway local repo, and so the repo conf referenced keys that did not exist. It was nice to clean that up.
pgpfVzGVJABVD.pgp
Description: PGP signature
_______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
