NAME

       rootsign  -  cryptographically sign standard input with a private/public keypair unique to
       the local root user

DESCRIPTION

       rootsign is a program that operates on standard input, cryptographically signing it with a
       private/public  keypair  only accessible by the local root user, and outputting the result
       on standard out, suitable for piping to mail(1).

       A   new   key   will   be   generated    on    first    use,    and    is    written    to
       /var/lib/rootsign/$KEYID.rsa.pub for import by other users into their keyring, in order to
       verify signatures.

       This tool is used by bootmail(8) to sign messages, but could easily be used by others.

       rootsign can optionally encrypt the message as well, by setting the recipient's gpg(1) key
       id in the RECIPIENT_KEYID variable in I/etc/bootmail/gpg.conf.

FILES

       /etc/bootmail/gpg.conf, /var/lib/rootsign/*.rsa.pub

SEE ALSO

       gpg(1), bootmail(8), mail(1)

       http://launchpad.net/bootmail

AUTHOR

       This  manpage  and  the  utility were written by Dustin Kirkland <kirkland@ubuntu.com> for
       Ubuntu systems (but may be used by others).  Permission is  granted  to  copy,  distribute
       and/or  modify  this  document  and  the utility under the terms of the GNU General Public
       License, Version 3 published by the Free Software Foundation.

       The complete text of the GNU General Public License can  be  found  in  /usr/share/common-
       licenses/GPL      on      Debian/Ubuntu      systems,     or     on     the     web     at
       http://www.gnu.org/licenses/gpl.txt.