Red Hat Bugzilla – Bug 113470
Development kernel .rpm file not signed
Last modified: 2014-03-16 22:41:29 EDT
Description of problem:
The development kernel is not signed. There appears to be no way to
verify the integrity of the downloaded file, which means using it
would be a security problem.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
2. rpm -K kernel-2.6.1-1.37.i586.rpm
kernel-2.6.1-1.37.i586.rpm: sha1 md5 OK
kernel-2.6.1-1.37.i586.rpm: (sha1) dsa sha1 md5 gpg OK
(or at least a notice that a different key was used to sign this
package, and thus needed to be imported).
Packages in rawhide are not currently signed.