Note: This is a beta release of Red Hat Bugzilla 5.0. The data contained within is a snapshot of the live data so any changes you make will not be reflected in the production Bugzilla. Also email is disabled so feel free to test any aspect of the site that you want. File any problems you find or give feedback here.
Bug 78948 - "V3 DSA signature" warning installing RPMs
Summary: "V3 DSA signature" warning installing RPMs
Keywords:
Status: CLOSED NOTABUG
Alias: None
Product: Red Hat Linux
Classification: Retired
Component: rpm
Version: 8.0
Hardware: i686
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Jeff Johnson
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2002-12-03 20:59 UTC by Raul Acevedo
Modified: 2008-05-01 15:38 UTC (History)
0 users

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2002-12-03 20:59:53 UTC


Attachments (Terms of Use)

Description Raul Acevedo 2002-12-03 20:59:43 UTC
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2; MultiZilla v1.1.32
final) Gecko/20021127

Description of problem:
I'm guessing the warning might not be a bug, but if it isn't, then it being such
an obscure message that doesn't tell me anything useful IS a bug.

When I install RPMs, I get:

# rpm -Uvh ~raul/downloads/xinetd-2.3.7-5.i386.rpm 
warning: /home/raul/downloads/xinetd-2.3.7-5.i386.rpm: V3 DSA signature: NOKEY,
key ID db42a60e
Preparing...                ########################################### [100%]
   1:xinetd                 ########################################### [100%]


Version-Release number of selected component (if applicable):


How reproducible:
Sometimes

Steps to Reproduce:
1.  Install an RPM.
2.
3.
	

Actual Results:  I get the warning.

Expected Results:  I should get something useful, like what the warning means,
or anything.  Right now I have no idea what to do that information, and man rpm
isn't helpful.

Additional info:

Comment 1 Jeff Johnson 2002-12-03 21:06:32 UTC
Do (as root)
	rpm --import /usr/share/doc/rpm-4.1/RPM-GPG-KEY
to install Red Hat's public key and make the warning go away.

Verify by doing
	rpm -qi gpg-pubkey

There's no way for rpm or Red Hat or anyone other than you
to define the usefulness of "trust" wrto digital signatures.



Note You need to log in before you can comment on or make changes to this bug.