computing detached signature for a batch of files

greg at turnstep.com greg at turnstep.com
Fri Oct 10 18:31:20 CEST 2003


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


> I'm using gpg to build detached signatures for packages.
> When doing so, I generally have several files to sign.
> ... 
> It's a burden to type my pass-phrase for each file I want to sign.
> Is there any way I could do this and still type my pass-phrase only once?

You could always simply create a textfile containing sha1 checksums of 
every file and sign that instead of each package. That's what I do 
for PostgreSQL. Not only is it easier for me to create, but there is 
only one file that people have to download.

- --
Greg Sabino Mullane greg at turnstep.com
PGP Key: 0x14964AC8 200310101331

-----BEGIN PGP SIGNATURE-----
Comment: http://www.turnstep.com/pgp.html

iD8DBQE/huz+vJuQZxSWSsgRAgZ0AKCePXM2mMV/h6iPFkYArUScUPGejACeJN/j
2hzoQEwL/LCXQrDp/vyADJw=
=BmAl
-----END PGP SIGNATURE-----





More information about the Gnupg-users mailing list