Skip to content
Flowchart Learning

Repository_management

Chapter 31: Repository Management

Section titled “Chapter 31: Repository Management”

Overview

Section titled “Overview”

This chapter covers managing software repositories for different Linux distributions.

30.1 Repository Concepts

Section titled “30.1 Repository Concepts”

Repository Types

Section titled “Repository Types”
              Repository Types
+------------------------------------------------------------------+
|                                                                   |
|   Main/Base Repository                                           |
|   +------------------------------------------------------------+ |
|   | Core packages supported by distribution                    | |
|   +------------------------------------------------------------+ |
|                                                                   |
|   Updates Repository                                             |
|   +------------------------------------------------------------+ |
|   | Security updates and bug fixes                             | |
|   +------------------------------------------------------------+ |
|                                                                   |
|   Third-Party Repositories                                        |
|   +------------------------------------------------------------+ |
|   | Vendor-specific (nginx, docker, nodejs)                   | |
|   | Community (EPEL, AUR, Community)                           | |
|   +------------------------------------------------------------+ |
|                                                                   |
|   Testing/Unstable                                               |
|   +------------------------------------------------------------+ |
|   | Pre-release packages                                        | |
|   +------------------------------------------------------------+ |
|                                                                   |
+------------------------------------------------------------------+

30.2 Arch Linux Repositories

Section titled “30.2 Arch Linux Repositories”

Official Repositories

Section titled “Official Repositories”
/etc/pacman.conf
[core]
Include = /etc/pacman.d/mirrorlist


[extra]
Include = /etc/pacman.d/mirrorlist


[multilib]
Include = /etc/pacman.d/mirrorlist


[community]
Include = /etc/pacman.d/mirrorlist

Arch User Repository (AUR)

Section titled “Arch User Repository (AUR)”
Terminal window
# Using yay (AUR helper)
yay -S package_name


# Manual AUR build
git clone https://aur.archlinux.org/package_name.git
cd package_name
makepkg -si


# AUR utilities
yay -Syu --aur          # Upgrade AUR packages
yay -Qm                 # List explicitly installed AUR packages

Creating Local Repository

Section titled “Creating Local Repository”
Terminal window
# Create repo directory
sudo mkdir /opt/packages
sudo cp *.pkg.tar.zst /opt/packages/


# Create database
cd /opt/packages
repo-add custom.db.tar.gz *.pkg.tar.zst


# Add to pacman.conf
[custom]
Server = file:///opt/packages

30.3 Debian/Ubuntu Repositories

Section titled “30.3 Debian/Ubuntu Repositories”

Repository Types

Section titled “Repository Types”
Terminal window
# main - Free software, supported by Debian
# contrib - Free software, depends on non-free
# non-free - Non-free software
# restricted - Device drivers
# universe - Community-maintained packages


# Debian release categories
# stable - Current stable release
# testing - Testing distribution
# unstable - Rolling development (sid)
# experimental - Pre-release testing

Adding Repositories

Section titled “Adding Repositories”
Terminal window
# Add repository (Ubuntu)
sudo add-apt-repository ppa:nginx/stable
sudo add-apt-repository "deb http://archive.ubuntu.com/ubuntu focal main restricted"


# Add repository (Debian)
echo "deb http://deb.debian.org/debian bookworm main" | sudo tee /etc/apt/sources.list.d/bookworm.list
sudo apt update

Repository Priority (Pinning)

Section titled “Repository Priority (Pinning)”
/etc/apt/preferences
Package: *
Pin: release a=stable
Pin-Priority: 900


Package: *
Pin: release a=testing
Pin-Priority: 100

30.4 RHEL/CentOS/Fedora Repositories

Section titled “30.4 RHEL/CentOS/Fedora Repositories”

EPEL (Extra Packages for Enterprise Linux)

Section titled “EPEL (Extra Packages for Enterprise Linux)”
Terminal window
# Install EPEL
sudo dnf install epel-release
sudo dnf update


# EPEL configuration
cat /etc/yum.repos.d/epel.repo

Third-Party Repositories

Section titled “Third-Party Repositories”
Terminal window
# Nginx
sudo yum-config-manager --add-repo https://nginx.org/packages/mainline/rhel/8/x86_64/


# Docker
sudo yum-config-manager --add-repo https://download.docker.com/linux/centos/docker-ce.repo


# PostgreSQL
sudo yum install https://download.postgresql.org/pub/repos/yum/reporpms/EL-8-x86_64/pgdg-redhat-repo-latest.noarch.rpm

Subscription Manager (RHEL)

Section titled “Subscription Manager (RHEL)”
Terminal window
# Register system
sudo subscription-manager register --username USER --password PASS --auto-attach


# List available repos
sudo subscription-manager repos --list


# Enable/disable repos
sudo subscription-manager repos --enable rhel-8-for-x86_64-baseos-rpms
sudo subscription-manager repos --disable rhel-8-for-x86_64-baseos-rpms

30.5 Mirrors Management

Section titled “30.5 Mirrors Management”

Using Fastest Mirror

Section titled “Using Fastest Mirror”
Terminal window
# Arch Linux - rankmirrors
sudo pacman-mirrors --fasttrack


# Or manually rank
sudo pacman-mirrors -i -c United_States


# Debian
# Install netselect-apt
sudo apt install netselect-apt
sudo netselect -v -s 1 -t 20 ftp.de.debian.org debian.org

Creating Mirror List

Section titled “Creating Mirror List”
Terminal window
# /etc/pacman.d/mirrorlist - Arch example
Server = https://mirror.us.ArchLinux.org/$repo/os/$arch
Server = https://mirrors.kernel.org/archlinux/$repo/os/$arch
Server = https://mirror.0xsystems.com/archlinux/$repo/os/$arch

30.6 Repository Security

Section titled “30.6 Repository Security”

GPG Keys

Section titled “GPG Keys”
Terminal window
# Arch - refresh keys
sudo pacman-key --refresh-keys


# Debian
sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys GPG_KEY
sudo apt-key del KEYID


# RHEL
sudo rpm --import /path/to/RPM-GPG-KEY

Package Signing

Section titled “Package Signing”
Terminal window
# Verify package signature
rpm -K package.rpm
dpkg-sig --verify package.deb


# Import key before adding repo
gpg --keyserver keyserver.ubuntu.com --recv-keys GPG_KEY
gpg --export GPG_KEY | sudo apt-key add -

30.7 Repository Caching

Section titled “30.7 Repository Caching”

Proxy Cache

Section titled “Proxy Cache”
/etc/apt/apt.conf.d/90http-proxy
# apt-cacher-ng
sudo apt install apt-cacher-ng
# Configure clients
Acquire::http::Proxy "http://server:3142";

yum/dnf Cache

Section titled “yum/dnf Cache”
Terminal window
# Clean cache
sudo dnf clean all


# Keep cache for offline use
sudo dnf cache --optimize

30.8 Repository Synchronization

Section titled “30.8 Repository Synchronization”

rsync Mirrors

Section titled “rsync Mirrors”
Terminal window
# Basic rsync for local mirror
rsync -avSH --delete \
    rsync://rsync.archlinux.org/ftp_tls \
    /path/to/local/mirror/


# Schedule with cron
# /etc/cron.d/mirror-sync
0 2 * * * rsync -aSH --delete rsync://... /path/to/mirror/

Summary

Section titled “Summary”

In this chapter, you learned:

  • ✅ Repository types and concepts
  • ✅ Arch Linux AUR and custom repos
  • ✅ Debian/Ubuntu repository management
  • ✅ RHEL/CentOS repositories and EPEL
  • ✅ Mirror management
  • ✅ Repository security (GPG keys)

Next Chapter

Section titled “Next Chapter”

Chapter 31: Linux Security Basics - SELinux, AppArmor

Last Updated: February 2026