On Thu, Aug 21, 2003 at 01:51:32PM -0400, Colin Walters wrote:
> Say company has a setup with a bunch of Debian stable machines, using
> apt-secure. They of course use security.debian.org. However they also
> have a trusted server on their intranet that provides some packages, and
> all the other machines use it as an apt source. Because Debian doesn't
> have any standard scripts for generating a secured apt source, and since
> it's on their secure intranet, they don't bother checking the sigs on
> the Release file.
So, why don't we just give them a script?
echo 'Origin: foocorp'
echo 'Label: foocorp'
echo 'Suite: testing/foocorp'
echo 'Codename: sarge/foocorp'
echo 'Date:' `date -R -u`
echo 'Architectures: i386'
echo 'Components: main'
echo 'Description: foocorp local packages'
echo 'MD5Sum:'
for a in */binary-*/{Release,Packages}* */source/{Release,Sources}*; do
m=`md5sum < $a | cut -d\ -f1`
s=`wc -c < $a | tr -d ' '`
printf ' %s %16d %s' $m $s $a
done
or something similar should do, really.
Cheers,
aj
--
Anthony Towns <aj@humbug.org.au> <http://azure.humbug.org.au/~aj/>
I don't speak for anyone save myself. GPG signed mail preferred.
``Is this some kind of psych test?
Am I getting paid for this?''
Attachment:
pgp9mShqZlokR.pgp
Description: PGP signature