Plex packages signed by sha-1 no longer works on redhat/centos/rocky 9

Hurin · June 7, 2023, 1:45am

Hello Plex folks! Plex packages are still being signed with sha-1. This is no longer supported by Redhat Enterprise Linux 9 (Redhat/CentOS/Rocky 9). The relevant article is here: https://www.redhat.com/en/blog/rhel-security-sha-1-package-signatures-distrusted-rhel-9

I hope Plex plans to start signing their packages with SHA-256 in the future.

Yes, there are work-arounds (mentioned in the article). But. . . let’s hope they’re not necessary for long!

ChuckPa · June 7, 2023, 3:52am

There’s been a lot of work on that this week.

From what I can see, it looks like they’ve finally sorted it out for RPM packages.

Next PMS release should be better if I read it correctly

system · September 5, 2023, 3:52am

This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Bitten by "Plex packages signed by sha-1 no longer works on redhat/centos/rocky 9" General Discussions server-linux	1	44	July 18, 2024
Upgrade signing key algrithm to sha256 for rhel-9 users General Discussions server-linux	1	53	December 30, 2023
Legacy SHA1 signatures on RPM packages Desktops & Laptops server-linux	1	117	September 24, 2022
Unable to import GPG key for rpm repo (sha1) Plex Media Server server-linux	155	3465	November 29, 2025
Unable install Plex Signkey Desktops & Laptops server-linux	2	83	December 27, 2023