This is a follow-up from #712
The new key for signing the packages is using Ed25519/Curve25519 as algorithm. This will make sure that no Linux admin has to enable the insecure SHA1 algorithm that was used with the old signing key.
The problem here is that RHEL/Rocky 9 do not suppot this algorithm for their package manager at all.
So while the new packages are signed with a key that is newer, it still does not allow me to install patchman without modifications on RHEL/Rocky 9 servers.
The only alternative is to update to Rocky 10, but an in-place upgrade is not supported by Rocky Linux. I would have to reinstall the machines. This is not an option, of course.
Would it be possible to also use a RSA key for signing in the future?
This is a follow-up from #712
The new key for signing the packages is using Ed25519/Curve25519 as algorithm. This will make sure that no Linux admin has to enable the insecure SHA1 algorithm that was used with the old signing key.
The problem here is that RHEL/Rocky 9 do not suppot this algorithm for their package manager at all.
So while the new packages are signed with a key that is newer, it still does not allow me to install patchman without modifications on RHEL/Rocky 9 servers.
The only alternative is to update to Rocky 10, but an in-place upgrade is not supported by Rocky Linux. I would have to reinstall the machines. This is not an option, of course.
Would it be possible to also use a RSA key for signing in the future?