It is possible to set up a package repository which can only be accessible by authorized clients that have a valid authorization key. LPMtool includes a sample Apache-based reference implementation of authenticated package repository access requests. The authentication protocol is documented, so that other implementations can be created.