*nix Documentation Project
·  Home
 +   man pages
·  Linux HOWTOs
·  FreeBSD Tips
·  *niX Forums

  man pages->Linux man pages -> vendors.list (5)              



NAME    [Toc]    [Back]

       vendors.list - Security key configuration for APT

DESCRIPTION    [Toc]    [Back]

       The  package  vendor  list contains a list of all vendors from whom you
       wish to authenticate downloaded packages.  For each vendor  listed,  it
       must  contain  the  corresponding  PGP key fingerprint, so that APT can
       perform signature verification  of  the	release  file  and  subsequent
       checking  of the checksums of each downloaded package.  To have authentication
 enabled, you must add the vendor  identification  string  (see
       below) enclosed in square braces to the sources.list line for all sites
       that mirror the repository provided by that vendor.

       The format of this file is similar to the one used by apt.conf. It consists
  of  an  arbitrary  number of blocks of vendors, where each block
       starts with a string telling the key_type and the vendor_id.

       Some vendors may have multiple blocks that  define  different  security
       policies  for their distributions. Debian for instance uses a different
       signing methodology for stable and unstable releases.

       key_type is the type of the check required.  Currently, there  is  only
       one type available which is simple-key.

       vendor_id  is  the  vendor  identification  string.  It is an arbitrary
       string you must supply to uniquely identifify a vendor that's listed in
       this file.  Example:

       single_key "joe"
	  Fingerprint "0987AB4378FSD872343298787ACC";
	  Name "Joe Shmoe <joe@shmoe.com>";

THE SIMPLE-KEY TYPE    [Toc]    [Back]

       This  type of verification is used when the vendor has a single secured
       key that must be used to sign the Release  file.  The  following  items
       should be present

       Fingerprint    [Toc]    [Back]
	      The  PGP	fingerprint  for  the  key.  The fingerprint should be
	      expressed in the standard notion with or	without  spaces.   The
	      --fingerprint  option  for  gpg(1) will show the fingerprint for
	      the selected keys(s).

       Name   A string containing a description of the owner  of  the  key  or
	      vendor.  You  may put the vendor name and it's email. The string
	      must be quoted with ".

FILES    [Toc]    [Back]


SEE ALSO    [Toc]    [Back]


BUGS    [Toc]    [Back]

       See the APT bug page <URL:http://bugs.debian.org/apt>.  If you wish  to
       report a bug in APT, please see /usr/share/doc/debian/bug-reporting.txt
       or the bug(1) command.

AUTHOR    [Toc]    [Back]

       APT was written by the APT team <apt@packages.debian.org>.

				 12 March 2001		       VENDORS.LIST(5)
[ Back ]
 Similar pages
Name OS Title
security HP-UX security defaults configuration file
open_secdef HP-UX security defaults configuration file routines
get_secdef_int HP-UX security defaults configuration file routines
matrix.conf Tru64 SIA (Security Integration Architecture) configuration file
get_secdef_str HP-UX security defaults configuration file routines
secdef HP-UX security defaults configuration file routines
close_secdef HP-UX security defaults configuration file routines
audit_setup Tru64 Audit subsystem configuration graphical interface (Enhanced Security)
auditconfig Tru64 Audit subsystem configuration graphical interface (Enhanced Security)
t6ext_attr IRIX Activate extended security attributes or set policy on security attribute change
Copyright © 2004-2005 DeniX Solutions SRL
newsletter delivery service