Re: apt-get invalid signature again

To: debian-user@lists.debian.org
Subject: Re: apt-get invalid signature again
From: Joey Hess <joeyh@debian.org>
Date: Sat, 28 Jan 2006 23:38:56 -0500
Message-id: <[🔎] 20060129043855.GA8187@kitenet.net>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 20060129032836.GB6488@kitenet.net>
References: <[🔎] 20060128181533.GA3242@wheat.betterworld.us> <[🔎] 20060129032836.GB6488@kitenet.net>

Joey Hess wrote:
> Ross Boylan wrote:
> > Starting last night I see
> > W: GPG error: http://localhost sarge/updates Release: The following signatures were invalid: BADSIG F1D53D8C4F368D5D Debian Archive Automatic Signing Key (2005) <ftpmaster@debian.org>
> > 
> > Anyone know what's up?  I don't see messages about this latest
> > occurrence.
> 
> The sarge security updates repository has a still valid signature from
> the 2005 key.
> 
> A broken cache could certianly cause your problem.

I managed to reproduce your problem. security.debian.org is on round
robin dns, and one of the mirrors is not updating. If apt downloads some
(but not all) files from this mirror, it will detect a bad signature.

-- 
see shy jo

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Re: apt-get invalid signature again
  - From: Ross Boylan <RossBoylan@stanfordalumni.org>

References:
- apt-get invalid signature again
  - From: Ross Boylan <RossBoylan@stanfordalumni.org>
- Re: apt-get invalid signature again
  - From: Joey Hess <joeyh@debian.org>

Prev by Date: Re: No luck getting Gallery to work on Sarge..Anyone able to??
Next by Date: [QMR-82908]: Re: Word file
Previous by thread: Re: apt-get invalid signature again
Next by thread: Re: apt-get invalid signature again
Index(es):
- Date
- Thread