拿到一個發行版軟件包后,通常要對軟件包進行非對稱加密驗證(MD5)
首先查看公鑰是否正常安裝:
rpm -qa | grep gpg-pubkey 或者 rpm -qa gpg-pubkey
如果未正常安裝,可先手動進行安裝
sudo rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-redhat-release
或者使用安裝介質的源,如:rpm --import /media/Rhel6.4/RPM-GPG-KEY-redhat-release
如果安裝中提示錯誤:
[kevin@PandoraX Rhel6.4]$ rpm --import /media/Rhel6.4/RPM-GPG-KEY-redhat-release
error: cannot get exclusive lock on /var/lib/rpm/Packages
error: cannot open Packages index using db3 - Operation not permitted (1)
error: cannot open Packages database in /var/lib/rpm
error: /media/Rhel6.4/RPM-GPG-KEY-redhat-release: key 1 import failed.
error: cannot get exclusive lock on /var/lib/rpm/Packages
error: cannot open Packages database in /var/lib/rpm
error: /media/Rhel6.4/RPM-GPG-KEY-redhat-release: key 2 import failed.
很可能是由于權限問題造成,更新key需要root身份或者sudo身份進行操作
安裝完成后可正常進行驗證:
rpm -K vsftpd-2.2.2-11.el6.x86_64.rpm
vsftpd-2.2.2-11.el6.x86_64.rpm: rsa sha1 (md5) pgp md5 OK
驗證通過
查看公鑰信息rpm -qi gpg-pubkey-2fa658e0-45700c69
查看詳細驗證信息rpm -vK vsftpd-2.2.2-11.el6.x86_64.rpm
rpm -vvK vsftpd-2.2.2-11.el6.x86_64.rpm
yum源中的gpg校驗
[base]
name=Red Hat Enterprise
Linux baseurl=file:///media/Rhel6.4/Server
enabled=1
gpgcheck=0 (0代表不進行校驗,1為每次都進行校驗)
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-redhat-release