version 1 showing authors affecting page license.
.
Rev |
Author |
# |
Line |
1 |
perry |
1 |
VENDORS.LIST |
|
|
2 |
!!!VENDORS.LIST |
|
|
3 |
NAME |
|
|
4 |
DESCRIPTION |
|
|
5 |
THE SIMPLE-KEY TYPE |
|
|
6 |
FILES |
|
|
7 |
SEE ALSO |
|
|
8 |
BUGS |
|
|
9 |
AUTHOR |
|
|
10 |
---- |
|
|
11 |
!!NAME |
|
|
12 |
|
|
|
13 |
|
|
|
14 |
vendors.list - Security key configuration for APT |
|
|
15 |
!!DESCRIPTION |
|
|
16 |
|
|
|
17 |
|
|
|
18 |
The package vendor list contains a list of all vendors from |
|
|
19 |
whom you wish to authenticate downloaded packages. For each |
|
|
20 |
vendor listed, it must contain the corresponding PGP key |
|
|
21 |
fingerprint, so that APT can perform signature verification |
|
|
22 |
of the release file and subsequent checking of the checksums |
|
|
23 |
of each downloaded package. To have authentication enabled, |
|
|
24 |
you must add the vendor identification string (see below) |
|
|
25 |
enclosed in square braces to the sources.list line for all |
|
|
26 |
sites that mirror the repository provided by that |
|
|
27 |
vendor. |
|
|
28 |
|
|
|
29 |
|
|
|
30 |
The format of this file is similar to the one used by |
|
|
31 |
apt.conf. It consists of an arbitrary number of blocks of |
|
|
32 |
vendors, where each block starts with a string telling the |
|
|
33 |
''key_type'' and the ''vendor_id''. |
|
|
34 |
|
|
|
35 |
|
|
|
36 |
Some vendors may have multiple blocks that define different |
|
|
37 |
security policies for their distributions. Debian for |
|
|
38 |
instance uses a different signing methodology for stable and |
|
|
39 |
unstable releases. |
|
|
40 |
|
|
|
41 |
|
|
|
42 |
''key_type'' is the type of the check required. |
|
|
43 |
Currently, there is only one type available which is |
|
|
44 |
simple-key. |
|
|
45 |
|
|
|
46 |
|
|
|
47 |
''vendor_id'' is the vendor identification string. It is |
|
|
48 |
an arbitrary string you must supply to uniquely identifify a |
|
|
49 |
vendor that's listed in this file. Example: |
|
|
50 |
|
|
|
51 |
|
|
|
52 |
single_key |
|
|
53 |
!!THE SIMPLE-KEY TYPE |
|
|
54 |
|
|
|
55 |
|
|
|
56 |
This type of verification is used when the vendor has a |
|
|
57 |
single secured key that must be used to sign the Release |
|
|
58 |
file. The following items should be present |
|
|
59 |
|
|
|
60 |
|
|
|
61 |
__Fingerprint__ |
|
|
62 |
|
|
|
63 |
|
|
|
64 |
The PGP fingerprint for the key. The fingerprint should be |
|
|
65 |
expressed in the standard notion with or without spaces. The |
|
|
66 |
__--fingerprint__ option for gpg(1) will show the |
|
|
67 |
fingerprint for the selected keys(s). |
|
|
68 |
|
|
|
69 |
|
|
|
70 |
__Name__ |
|
|
71 |
|
|
|
72 |
|
|
|
73 |
A string containing a description of the owner of the key or |
|
|
74 |
vendor. You may put the vendor name and it's email. The |
|
|
75 |
string must be quoted with |
|
|
76 |
!!FILES |
|
|
77 |
|
|
|
78 |
|
|
|
79 |
''/etc/apt/vendors.list'' |
|
|
80 |
!!SEE ALSO |
|
|
81 |
|
|
|
82 |
|
|
|
83 |
''sources.list''(5) |
|
|
84 |
!!BUGS |
|
|
85 |
|
|
|
86 |
|
|
|
87 |
See the APT bug page |
|
|
88 |
/usr/share/doc/debian/bug-reporting.txt'' or the |
|
|
89 |
bug(1) command. |
|
|
90 |
!!AUTHOR |
|
|
91 |
|
|
|
92 |
|
|
|
93 |
APT was written by the APT team |
|
|
94 |
---- |