While adding a departmental DNF software repository on a RHEL-based host, a security policy requires the system to verify the GPG signature of the repository's metadata (for example the repomd.xml file) before any packages are processed. Which single option must be set to 1 in the repository's .repo stanza to enable this check?
The repo_gpgcheck option controls whether DNF verifies the GPG signature that accompanies the repository's metadata. Setting repo_gpgcheck=1 causes DNF to look for a signed repomd.xml.asc file and refuse the repository if that signature cannot be validated. The gpgcheck option instead validates individual RPM package signatures, gpgkey only provides the URL of the key file, and sslverify relates to TLS certificate verification-none of those alone enforce metadata-signature validation.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the purpose of GPG signature verification in a repository?
Open an interactive chat with Bash
How is 'repo_gpgcheck=1' different from 'gpgcheck=1'?
Open an interactive chat with Bash
What is the role of the gpgkey option in a .repo file?
Open an interactive chat with Bash
CompTIA Linux+ XK0-006 (V8)
Services and User Management
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .