Goswin von Brederlow wrote: > Once you update apt it does. That is when you notice that suddenly you > need the key for authentication. As I said, you have to install debian-archive-keyring first. > Also on every key upgrade you have to install an untrusted package. No, you merely have to upgrade debian-archive-keyring before the old key exires, using the old key to validate the package containing the new one. > Not to mention that any inofficial apt archive is left out in the > rain. Do you expect every archive to have their own keyring package? No, I expect them to continue distributing the apt keys in various ways as they already demonstratably do now, and probably eventually converge on a single standard way with a standard well-known command to get the key. -- see shy jo
Attachment:
signature.asc
Description: Digital signature