Re: No public key
On Thu, 03 May 2007 20:02:12 -0700, zpackard wrote:
> ############################################
> W: GPG error: http://www.backports.org etch-backports Release: The
> following signatures couldn't be verified because the public key is not
> available: NO_PUBKEY EA8E8B2116BA136C
> ############################################
You must import this PGP key so that apt can ensure that the repository
has not been tampered with:
$ gpg --recv-key EA8E8B2116BA136C
gpg: requesting key 16BA136C from hkp server subkeys.pgp.net
gpg: key 16BA136C: "Backports.org Archive Key <ftp-master@backports.org>"
not changed
gpg: Total number processed: 1
gpg: unchanged: 1
$ gpg --check-sigs EA8E8B2116BA136C
pub 1024D/16BA136C 2005-08-21
uid [marginal] Backports.org Archive Key <ftp-master@backports.org>
sig! 7E7B8AC9 2005-11-20 Joerg Jaspert <joerg@debian.org>
sig!3 16BA136C 2005-08-21 Backports.org Archive Key <ftp-master@backports.org>
sig!3 16BA136C 2005-08-21 Backports.org Archive Key <ftp-master@backports.org>
sub 2048g/5B82CECE 2005-08-21
sig! 16BA136C 2005-08-21 Backports.org Archive Key <ftp-master@backports.org>
$ gpg --export EA8E8B2116BA136C | sudo apt-key add -
Password:
OK
Note that if you don't have the signatures of any Debian Developers
on your keyring, you can't really verify the key as in stage 3; you'll
just have to hope that they key you recieve is genuine.
Instead of downloading it via gpg you can probably get it off
http://backports.org/ somewhere... ah:
$ curl http://backports.org/debian/archive.key | apt-key add -
--
Sam Morris
http://robots.org.uk/
PGP key id 1024D/5EA01078
3412 EA18 1277 354B 991B C869 B219 7FDB 5EA0 1078
Reply to: