Bug#980743: release-notes: bullseye is the final release to ship apt-key
On 2021-01-21 10:17:48, Julian Andres Klode wrote:
> Package: release-notes
> Severity: wishlist
> X-Debbugs-Cc: jak@debian.org
>
>
> apt-key warns that it is deprecated and the manual page states that
> Debian 11 and Ubuntu 22.04 will be the last releases to ship it, but I
> guess given that use is still far too widespread, it can't hurt to add a
> similar message to the release notes.
>
> -- Message:
>
> This is the final Debian release to ship apt-key. Keys should be managed by
> dropping files into trusted.gpg.d instead, in binary format as created
> by gpg --export with a .gpg extension, or ASCII armored with a .asc
> extension.
>
> A replacement for apt-key list to investigate the keyring is planned,
> but work has not started yet.
Could we make that /usr/share/keyrings and talk about `signed-by` in
sources.list entries? I've been trying really hard to convince people to
stop granting random repos the capacity of impersonating official Debian
repos for years now, through those instructions:
https://wiki.debian.org/DebianRepository/UseThirdParty
It would be great to make that more official here...
Thanks for the deprecation, in any case, I think it's a great move forward!
a.
--
People arbitrarily, or as a matter of taste, assigning numerical values
to non-numerical things. And then they pretend that they haven't just
made the numbers up, which they have. Economics is like astrology in
that sense, except that economics serves to justify the current power
structure, and so it has a lot of fervent believers among the powerful.
- Kim Stanley Robinson, Red Mars
Reply to: