Are the Jolla Store rpms signed?
Are the Jolla Store rpms signed by jolla? so that you can be sure that the download completed correctly and the signature matches from Jolla?
We have moved to a new Sailfish OS Forum. Please start new discussions there.
Are the Jolla Store rpms signed by jolla? so that you can be sure that the download completed correctly and the signature matches from Jolla?
Some of the packages are signed. For example jolla-alarm-ui has a signature:
$ rpm -qi jolla-alarm-ui
Name : jolla-alarm-ui
...
Signature : DSA/SHA1, Wed 27 Nov 2013 13:46:05 EET, Key ID 68ebdd7df2633ee0
...
But for example "less" isn't signed: Signature : (none), but I think I installed that from mer-tools repository that needs to be activated separately.
Jolla RPM seems to be signed by Jolla, however, other Harbour applications, like puzzlemaster, are not signed.
[nemo@localhost ~]$ rpm -qi harbour-puzzle-master
Name : harbour-puzzle-master
....
License : GPLv2+
Signature : (none)
...
I agree. Better open a new post to ask for them to be signed ?
Sfiet_Konstantin ( 2013-12-30 18:09:49 +0200 )editThis thread is public, all members of Together.Jolla.Com can read this page.
Asked: 2013-12-27 15:42:38 +0200
Seen: 348 times
Last updated: Dec 30 '13
What name is used to sign comment on application in Jolla store? [answered]
During system updates are downloads kept to a minimum?
Suggestion: Use delta-RPM (presto) for bandwidth efficient updates
[Harbour] add whats new section to app description [released]
Cannot install apps from harbour [answered]
Store: a way to share direct links to apps
Store: improve the browsing and search for new apps
[Idea] Add all main open source browsers Android versions to Jolla store