I've updated my local repositories to use signed Release files. mini-dinstall makes this quite easy. They look ok, but apt-get just ignores them. For example: deb http://kitenet.net/~joey/debian/ unstable/ The key is 025BC58F, on wwwkeys.us.pgp.net. root@kite:~>apt-key list /etc/apt/trusted.gpg -------------------- pub 1024D/30B34DD5 2003-12-03 Debian Archive Automatic Signing Key (2003 v2) <ftpmaster@debian.org> pub 1024D/025BC58F 2003-12-27 Joey Hess (apt repository signing key) <joey+archive@kitenet.net> sub 1024g/CB0B34ED 2003-12-27 root@kite:~>apt-get update Ign http://uqm.debian.net unstable/ Release.gpg Ign http://kitenet.net unstable/ Release.gpg Ign http://uqm.debian.net unstable/ Release Hit http://uqm.debian.net unstable/ Packages Hit http://uqm.debian.net unstable/ Sources Ign http://kitenet.net unstable/ Release Hit http://kitenet.net unstable/ Packages apt-key add fails if there is no ~root/.gnupg. I don't habitually use gpg as root, so that was suprising. -- see shy jo
Attachment:
signature.asc
Description: Digital signature