Re: Debian Archive Automatic Signing Key (4.0/etch)?
On Wed, Nov 22, 2006 at 10:54:47PM +0100, Bartosz Fenski aka fEnIo wrote:
> On Tue, Nov 21, 2006 at 11:52:38PM +0100, Kurt Roeckx wrote:
> > > > gpg --recv-keys A70DAF536070D3A1 && (gpg --export -a A70DAF536070D3A1 | apt-key add -)
> > >
> > > Uh, don't forget the part about verifying that the key is actually
> > > signed by the ftpmasters. Skipping that step pretty much defeats the
> > > entire point.
> > >
> > > gpg --list-sigs A70DAF536070D3A1
> >
> > Try gpg --check-sigs A70DAF536070D3A1 instead.
>
> Very useful:
>
> (fenio@lapik)~$gpg --check-sigs A70DAF536070D3A1
> pub 1024D/6070D3A1 2006-11-20 [expires: 2009-07-01]
> uid Debian Archive Automatic Signing Key (4.0/etch) <ftpmaster@debian.org>
> sig!3 6070D3A1 2006-11-20 Debian Archive Automatic Signing Key (4.0/etch) <ftpmaster@debian.org>
>
> 2 signatures not checked due to missing keys
^^^
Those signatures are:
sig 2A4E3EAA 2006-11-20 Anthony Towns <aj@erisian.com.au>
sig 29982E5A 2006-11-21 Steve Langasek <vorlon@dodds.net>
> (fenio@lapik)~$
>
> Looks that it's signed by itself.
Yes, aren't all keys self-signed?
Regards: David
--
/) David Weinehall <tao@debian.org> /) Rime on my window (\
// ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ // Diamond-white roses of fire //
\) http://www.acc.umu.se/~tao/ (/ Beautiful hoar-frost (/
Reply to: