Re: repository signing keys update HOW?
Am Donnerstag, 29. März 2012 schrieb Paul E Condon:
> On 20120329_123755, Scott Ferguson wrote:
> > On 29/03/12 12:12, Paul E Condon wrote:
> > > I have forgotten how to install the latest official signing keys
> > > for the package repositories, and I can't even remember search
> > > terms that take me to the information. I am getting reports from
> > > aptitude that signitures are unverified on release and index
> > > files. I think it should happen automatically, but apparently it
> > > did not.
> > >
> > > Please remind me where I can get this.
> >
> > The clue is "keys" :-)
> >
> >
> > "apt-cache search keyring" and choose according to your needs
> > (debian-keyring at a minimum)
>
> I am getting error messages when attempting to update release and
> index files for the repository itself. These are provided, I think, in
> the package debian-keyring (so keys search did not work and I had used
> other means to find this ;-) But on the affected computer
> debian-keyring is shown by aptitude to be not installed. So proper
> updating must have stopped when the keys used in the initial install
> expired. Now I need to used some direct means, such as wget, or
> something which I can't remember, against a special keyring server,
> whose URL I also can't remember. I need help remembering. Once I find
> the page I need, I'm sure I will have no trouble understanding, and
> doing what needs to be done.
If you trust the server you should be able to install the keyring package
despite the warning. Apt should give you are way to install it
nonetheless.
Otherwise use gpg --recv-keys, gpg --export and apt-key add with the key
id that apt tells you missing.
I bet thats all easily findable on the web.
--
Martin 'Helios' Steigerwald - http://www.Lichtvoll.de
GPG: 03B0 0D6C 0040 0710 4AFA B82F 991B EAAC A599 84C7
Reply to: