Re: self signed repository
On Thu, Jul 05, 2012 at 12:09:44PM +0400, stalker@locum.ru wrote:
>
> I sign packet with debsign
> dpkg-sig --sign builder mytestpackage_1.2.3_amd64.deb
> and add my key to apt-key
>
> gpg --armor --export >/tmp/mykey
> and sudo apt-key add /tmp/mykey
>
> apt-key list show my key, but apt-get install mytestpackage show
> WARNING: The following packages cannot be authenticated!
>
> what i doing wrong?
You also need the Release file in the apt repository signing.
apt-get doesn't get check per-package signatures? Individual
packages aren't signed by default; just the archive as a whole
via the Release/InRelease files.
Regards,
Roger
--
.''`. Roger Leigh
: :' : Debian GNU/Linux http://people.debian.org/~rleigh/
`. `' schroot and sbuild http://alioth.debian.org/projects/buildd-tools
`- GPG Public Key F33D 281D 470A B443 6756 147C 07B3 C8BC 4083 E800
Reply to: