Bug 78948 - "V3 DSA signature" warning installing RPMs
"V3 DSA signature" warning installing RPMs
Status: CLOSED NOTABUG
Product: Red Hat Linux
Classification: Retired
Component: rpm (Show other bugs)
8.0
i686 Linux
medium Severity medium
: ---
: ---
Assigned To: Jeff Johnson
:
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2002-12-03 15:59 EST by Raul Acevedo
Modified: 2008-05-01 11:38 EDT (History)
0 users

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2002-12-03 15:59:53 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Raul Acevedo 2002-12-03 15:59:43 EST
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2; MultiZilla v1.1.32
final) Gecko/20021127

Description of problem:
I'm guessing the warning might not be a bug, but if it isn't, then it being such
an obscure message that doesn't tell me anything useful IS a bug.

When I install RPMs, I get:

# rpm -Uvh ~raul/downloads/xinetd-2.3.7-5.i386.rpm 
warning: /home/raul/downloads/xinetd-2.3.7-5.i386.rpm: V3 DSA signature: NOKEY,
key ID db42a60e
Preparing...                ########################################### [100%]
   1:xinetd                 ########################################### [100%]


Version-Release number of selected component (if applicable):


How reproducible:
Sometimes

Steps to Reproduce:
1.  Install an RPM.
2.
3.
	

Actual Results:  I get the warning.

Expected Results:  I should get something useful, like what the warning means,
or anything.  Right now I have no idea what to do that information, and man rpm
isn't helpful.

Additional info:
Comment 1 Jeff Johnson 2002-12-03 16:06:32 EST
Do (as root)
	rpm --import /usr/share/doc/rpm-4.1/RPM-GPG-KEY
to install Red Hat's public key and make the warning go away.

Verify by doing
	rpm -qi gpg-pubkey

There's no way for rpm or Red Hat or anyone other than you
to define the usefulness of "trust" wrto digital signatures.

Note You need to log in before you can comment on or make changes to this bug.