version 1, including all changes.
.
| Rev |
Author |
# |
Line |
| 1 |
perry |
1 |
VENDORS.LIST |
| |
|
2 |
!!!VENDORS.LIST |
| |
|
3 |
NAME |
| |
|
4 |
DESCRIPTION |
| |
|
5 |
THE SIMPLE-KEY TYPE |
| |
|
6 |
FILES |
| |
|
7 |
SEE ALSO |
| |
|
8 |
BUGS |
| |
|
9 |
AUTHOR |
| |
|
10 |
---- |
| |
|
11 |
!!NAME |
| |
|
12 |
|
| |
|
13 |
|
| |
|
14 |
vendors.list - Security key configuration for APT |
| |
|
15 |
!!DESCRIPTION |
| |
|
16 |
|
| |
|
17 |
|
| |
|
18 |
The package vendor list contains a list of all vendors from |
| |
|
19 |
whom you wish to authenticate downloaded packages. For each |
| |
|
20 |
vendor listed, it must contain the corresponding PGP key |
| |
|
21 |
fingerprint, so that APT can perform signature verification |
| |
|
22 |
of the release file and subsequent checking of the checksums |
| |
|
23 |
of each downloaded package. To have authentication enabled, |
| |
|
24 |
you must add the vendor identification string (see below) |
| |
|
25 |
enclosed in square braces to the sources.list line for all |
| |
|
26 |
sites that mirror the repository provided by that |
| |
|
27 |
vendor. |
| |
|
28 |
|
| |
|
29 |
|
| |
|
30 |
The format of this file is similar to the one used by |
| |
|
31 |
apt.conf. It consists of an arbitrary number of blocks of |
| |
|
32 |
vendors, where each block starts with a string telling the |
| |
|
33 |
''key_type'' and the ''vendor_id''. |
| |
|
34 |
|
| |
|
35 |
|
| |
|
36 |
Some vendors may have multiple blocks that define different |
| |
|
37 |
security policies for their distributions. Debian for |
| |
|
38 |
instance uses a different signing methodology for stable and |
| |
|
39 |
unstable releases. |
| |
|
40 |
|
| |
|
41 |
|
| |
|
42 |
''key_type'' is the type of the check required. |
| |
|
43 |
Currently, there is only one type available which is |
| |
|
44 |
simple-key. |
| |
|
45 |
|
| |
|
46 |
|
| |
|
47 |
''vendor_id'' is the vendor identification string. It is |
| |
|
48 |
an arbitrary string you must supply to uniquely identifify a |
| |
|
49 |
vendor that's listed in this file. Example: |
| |
|
50 |
|
| |
|
51 |
|
| |
|
52 |
single_key |
| |
|
53 |
!!THE SIMPLE-KEY TYPE |
| |
|
54 |
|
| |
|
55 |
|
| |
|
56 |
This type of verification is used when the vendor has a |
| |
|
57 |
single secured key that must be used to sign the Release |
| |
|
58 |
file. The following items should be present |
| |
|
59 |
|
| |
|
60 |
|
| |
|
61 |
__Fingerprint__ |
| |
|
62 |
|
| |
|
63 |
|
| |
|
64 |
The PGP fingerprint for the key. The fingerprint should be |
| |
|
65 |
expressed in the standard notion with or without spaces. The |
| |
|
66 |
__--fingerprint__ option for gpg(1) will show the |
| |
|
67 |
fingerprint for the selected keys(s). |
| |
|
68 |
|
| |
|
69 |
|
| |
|
70 |
__Name__ |
| |
|
71 |
|
| |
|
72 |
|
| |
|
73 |
A string containing a description of the owner of the key or |
| |
|
74 |
vendor. You may put the vendor name and it's email. The |
| |
|
75 |
string must be quoted with |
| |
|
76 |
!!FILES |
| |
|
77 |
|
| |
|
78 |
|
| |
|
79 |
''/etc/apt/vendors.list'' |
| |
|
80 |
!!SEE ALSO |
| |
|
81 |
|
| |
|
82 |
|
| |
|
83 |
''sources.list''(5) |
| |
|
84 |
!!BUGS |
| |
|
85 |
|
| |
|
86 |
|
| |
|
87 |
See the APT bug page |
| |
|
88 |
/usr/share/doc/debian/bug-reporting.txt'' or the |
| |
|
89 |
bug(1) command. |
| |
|
90 |
!!AUTHOR |
| |
|
91 |
|
| |
|
92 |
|
| |
|
93 |
APT was written by the APT team |
| |
|
94 |
---- |
