Re: census: apt sources.list snippets

[Paul Wise <pabs@debian.org>]

On Sun, May 29, 2011 at 2:59 PM, David Kalnischkies wrote:

> I am completely biased, but as at least a few derivatives doesn't have
> aptitude in the default installation the script should use 'apt-get update'
> to lower the dependencies in case i would want to run it 'at home'.

Yeah, changed that.

> (As a side note, i am fascinated what lines are created and used
>  just because the damn parser doesn't complain…)

:)

> Currently you can't easily - beside installing the keyrings.
> The warnings are harmless through, at install time apt will ask
> for confirmation for these packages or you give --allow-unauthenticated
>
> But if you really want to silence APT at this stage you can do this:
...
> This way every Release file is "magically" signed with a good signature -
> at least that is what APT gets to know from our faked gpgv - and all
> NO_PUBKEY warnings are gone.
...
> P.S.: The "signature" key is the one used in APTs testcases so don't
> worry that a real person could get offended by using this key for this trick.

Thanks, worked a treat.

It would be great to have trust paths from Debian to our derivatives,
but I don't see that happening any time soon so silencing apt is nice
for now.

-- 
bye,
pabs

http://wiki.debian.org/PaulWise