Re: Untrusted packages
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 05/10/09 07:24, M. Lewis wrote:
> I'm running Sid. I'm trying to install sun-java6-plugin, but aptitude is
> giving me 'untrusted package' warnings:
>
> moe:~# aptitude install sun-java6-plugin
> Reading package lists... Done
> Building dependency tree
> Reading state information... Done
> Reading extended state information
> Initializing package states... Done
> Reading task descriptions... Done
> The following NEW packages will be installed:
> odbcinst1debian1{a} sun-java6-bin{a} sun-java6-jre{a} sun-java6-plugin
> unixodbc{a}
> 0 packages upgraded, 5 newly installed, 0 to remove and 7 not upgraded.
> Need to get 33.5MB of archives. After unpacking 96.2MB will be used.
> Do you want to continue? [Y/n/?]
> WARNING: untrusted versions of the following packages will be installed!
>
> Untrusted packages could compromise your system's security.
> You should only proceed with the installation if you are certain that
> this is what you want to do.
>
> odbcinst1debian1 sun-java6-bin unixodbc sun-java6-jre sun-java6-plugin
>
> Do you want to ignore this warning and proceed anyway?
> To continue, enter "Yes"; to abort, enter "No": n
> Unrecognized input. Enter either "Yes" or "No".
> Do you want to ignore this warning and proceed anyway?
> To continue, enter "Yes"; to abort, enter "No": no
> Abort.
>
>
> A search of the archives recommends that I have the
> debian-archive-keyring installed. Which I do have installed:
> moe:~# dpkg -l | grep keyring
> ii debian-archive-keyring 2009.01.31 GnuPG
> archive keys of the Debian archive
> ii debian-keyring 2009.04.04 GnuPG
> (and obsolete PGP) keys of Debian Deve
> ii gnome-keyring 2.26.0-4 GNOME
> keyring services (daemon and tools)
> ii libgnome-keyring0 2.26.0-4 GNOME
> keyring services library
> ii libpam-gnome-keyring 2.26.0-4 PAM module
> to unlock the GNOME keyring upon
> ii python-gnomekeyring 2.24.1-1+b3 Python
> bindings for the GNOME keyring librar
>
>
> So I'm not sure why I'm getting these warnings. What do I need to do to
> correct these warnings?
>
> Thanks,
> Mike
>
>
What repository are you installing these packages from? Cat your
sources.list for us, and copy it into Pastebin. (cat /etc/sources.list)
Thanks.
- --
Many thanks
Harry Rickards
- -----BEGIN GEEK CODE BLOCK-----
Version: 3.1
GAT/GCM/GCS/GCC/GIT/GM d? s: a? C++++ UL++++ P- L+++ E--- W+++ N o K+
w--- O- M- V- PS+ PE Y+ PGP++ t 5 X R tv-- b+++ DI D---- G e* h! !r y?
- ------END GEEK CODE BLOCK------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAkoGlxYACgkQ1kZz3mRu0GoLegCeKwwJ8AfP/5yq/36ZGv90zqiQ
TF8An1Dw7rwzHCx59u7aWqAzhJVo29bf
=DJZK
-----END PGP SIGNATURE-----
Reply to: