Re: apt-get invalid signature again

To: debian-user@lists.debian.org
Cc: Ross Boylan <RossBoylan@stanfordalumni.org>
Subject: Re: apt-get invalid signature again
From: Ross Boylan <RossBoylan@stanfordalumni.org>
Date: Sun, 29 Jan 2006 10:46:10 -0800
Message-id: <[🔎] 20060129184610.GC3242@wheat.betterworld.us>
Mail-followup-to: debian-user@lists.debian.org, Ross Boylan <RossBoylan@stanfordalumni.org>
In-reply-to: <[🔎] 20060129043855.GA8187@kitenet.net>
References: <[🔎] 20060128181533.GA3242@wheat.betterworld.us> <[🔎] 20060129032836.GB6488@kitenet.net> <[🔎] 20060129043855.GA8187@kitenet.net>

On Sat, Jan 28, 2006 at 11:38:56PM -0500, Joey Hess wrote:
> Joey Hess wrote:
> > Ross Boylan wrote:
> > > Starting last night I see
> > > W: GPG error: http://localhost sarge/updates Release: The following signatures were invalid: BADSIG F1D53D8C4F368D5D Debian Archive Automatic Signing Key (2005) <ftpmaster@debian.org>
> > > 
> > > Anyone know what's up?  I don't see messages about this latest
> > > occurrence.
> > 
> > The sarge security updates repository has a still valid signature from
> > the 2005 key.
> > 
> > A broken cache could certianly cause your problem.
> 
> I managed to reproduce your problem. security.debian.org is on round
> robin dns, and one of the mirrors is not updating. If apt downloads some
> (but not all) files from this mirror, it will detect a bad signature.
> 
Thanks for tracking that down.  Is there a work-around?
Ross

Reply to:

References:
- apt-get invalid signature again
  - From: Ross Boylan <RossBoylan@stanfordalumni.org>
- Re: apt-get invalid signature again
  - From: Joey Hess <joeyh@debian.org>
- Re: apt-get invalid signature again
  - From: Joey Hess <joeyh@debian.org>

Prev by Date: Re: How to minimize /dev (using udev)?
Next by Date: Re: no network access to or from server
Previous by thread: Re: apt-get invalid signature again
Next by thread: Re: [linux-audio-user] RE: 2.6.15 alsa proble
Index(es):
- Date
- Thread