[TAF] wml://News/2009/20090523.wml

To: debian-l10n-french@lists.debian.org
Subject: [TAF] wml://News/2009/20090523.wml
From: Simon Paillard <simon.paillard@resel.enst-bretagne.fr>
Date: Thu, 27 Aug 2009 21:12:17 +0200
Message-id: <20090827191217.GD12787@dedibox.ebzao.info>
Mail-followup-to: debian-l10n-french@lists.debian.org

Bonsoir,

Ci-joint à traduire une page à propos du changement de la clé de
l'archive.

Avis aux amateurs !
(qui répondront par RFR)


-- 
Simon Paillard

<define-tag pagetitle>Debian Archive Signing Key to be changed</define-tag>
<define-tag release_date>2009-05-23</define-tag>
#use wml::debian::news


<p>The Debian Project wishes to announce the change of the GNU Privacy
Guard key used to digitally sign its archive reference files.  Signatures
are used to ensure that packages installed by users are the very same
originally distributed by Debian, and have not been exchanged or
tampered with.</p>

<p>Affected distributions are the Debian unstable branch (codenamed <q>Sid</q>)
as well as the testing branch (codenamed <q>Squeeze</q>).  The current stable
version Debian GNU/Linux 5.0 (codenamed <q>Lenny</q>) and the current
oldstable version Debian GNU/Linux 4.0 (codenamed <q>Etch</q>) will have
their ftpmaster signature updated too. The release managers signature
stays untouched.

The currently used key will expire soon.  The new key has already been
distributed via the debian-archive-keyring package.  For users of the
current stable release Debian GNU/Linux 5.0 (codenamed <q>Lenny</q>) no
action is required from the user side, since Debian GNU/Linux 5.0
(codenamed <q>Lenny</q>) was already shipped with the new key.  Users of the
current oldstable release Debian GNU/Linux 4.0 (codenamed <q>Etch</q>) should
ensure to have upgraded to the latest point release 4.0r8 which added an
upgraded package containing the new key.  Users of Debian's testing
branch (codenamed <q>Squeeze</q>) and Debian's unstable branch (codenamed
<q>Sid</q>) should ensure to have at least version 2009.01.31 of the
debian-archive-keyring package installed.</p>

<p>Starting with the next mirror update this evening and for the next three
weeks the archive will be digitally signed by both the old and the new
key.  Starting with the 13th of June only the new key will be used.</p>


<p>For reference, the old key is:</p>
<pre>
  pub   1024D/6070D3A1 2006-11-20 [expires: 2009-07-01]
  uid                  Debian Archive Automatic Signing Key (4.0/etch) &lt;ftpmaster@debian.org&gt;
</pre>

<p>And the new one is:</p>
<pre>
  pub   4096R/55BE302B 2009-01-27 [expires: 2012-12-31]
  uid                  Debian Archive Automatic Signing Key (5.0/lenny) &lt;ftpmaster@debian.org&gt;
</pre>

<p>This key rollover is a normal maintenance task and was started in
January.  For security reasons Debian's archive signing keys regularly
expire after three years.</p>


<h2>About Debian</h2>

<p>The Debian project is an organisation of many developers who volunteer their
time and effort, collaborating via the Internet.  Their tasks include
maintaining and updating Debian GNU/Linux which is a free distribution of the
GNU/Linux operating system.  Debian's dedication to Free Software, its
non-profit nature, and its open development model makes it unique among
GNU/Linux distributions.</p>


<h2>Contact Information</h2>

<p>For further information, please visit the Debian web pages at
<a href="$(HOME)/">http://www.debian.org/</a> or send mail to
&lt;press@debian.org&gt;.</p>

Reply to:

Prev by Date: [TAF] wml://security/pam-auth.wml
Next by Date: [TAF] wml://News/2009/20090730.wml
Previous by thread: [TAF] wml://security/pam-auth.wml
Next by thread: [TAF] wml://News/2009/20090730.wml
Index(es):
- Date
- Thread