Re: apt-check-sigs problem (plz cc adambarton@mac.com)

[Adam Barton <adambarton@mac.com>]

> Pretzalz:/# apt-key list
> /etc/apt/trusted.gpg
> --------------------
> pub 1024D/30B34DD5 2003-12-03 Debian Archive Automatic Signing Key 
> (2003 v2) <ftpmaster@debian.org>
>
> pub 1024D/38C6029A 2002-12-20 Debian Archive Automatic Signing Key 
> (2003) <ftpmaster@debian.org>
>
>
>
> 30B34DD5 was created after the compromise and shouldn't be hard to 
> find on any major keyring. 38C6029A is considered unsecure because of 
> the compromise, but I am not sure if it really is or they are just 
> being safe.


Superb... thanks for the help

However, apt-key is not on my system... cant find it with dselect and 
also can't find it in packages.debian.org. Am I right to think this is 
included in apt 0.6? If so, is this available via apt if I amend my 
sources.list?

apt-key is not so important, I will simply verify the releases manually. 
What is more important is to get hold of  30B34DD5 . I have tried the 
below with no luck. I am somewhat sure it isn't a connectivity issue as 
I can see keyring.debian.org return a tcp reset in a tcpdump (i.e. go 
away, no service listening here!).

blueboy:~# gpg --keyserver keyring.debian.org --recv-keys 30B34DD5
gpg: requesting key 30B34DD5 from keyring.debian.org ...
gpg: can't get key from keyserver: Connection refused
blueboy:~#

02:38:24.720000 192.168.172.2.1183 > 206.246.226.45.11371: S 
583642723:583642723(0) win 32120 <mss 1460,sackOK,timestamp 44128711 
0,nop,wscale 0> (DF)
02:38:24.720000 206.246.226.45.11371 > 192.168.172.2.1183: R 0:0(0) ack 
583642724 win 0 (DF)

So, am I using the gpg command correctly and should I be pointing to 
keyring.debian.org?

If so is anyone else able to download 30B34DD5?  Would anyone be so 
kind as to try?

Kind regards,

Adam Barton.