On 07/10/2013 21:37, Anton Shterenlikht wrote: > The pkg.conf(5) man page only > says: > > PUBKEY: string Specifies the location to the public RSA key > used for signing the repository database. > The default value for this file is > /etc/ssl/pkg.conf > > I'm not clear which side creates this file: > the server which builds the packages? > Or the client that gets the packages > from the server? Or something else > altogether?
This is an optional function. You can just leave the entry blank if you don't need to sign the packages. Otherwise, you can create an RSA keypair using the instructions shown in Glen's blog, and copy the pub key onto all your client machines. https://glenbarber.us/2012/06/11/Maintaining-Your-Own-pkgng-Repository.html I note that there are changes to the digital signing code coming with pkg-1.2 to support package signatures for 10.x Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. PGP: http://www.infracaninophile.co.uk/pgpkey JID: matt...@infracaninophile.co.uk
signature.asc
Description: OpenPGP digital signature
