Re: self signed repository

To: debian-user@lists.debian.org
Subject: Re: self signed repository
From: Ivan Shmakov <oneingray@gmail.com>
Date: Thu, 05 Jul 2012 18:50:19 +0700
Message-id: <[🔎] 8662a2bf5w.fsf@gray.siamics.net>
References: <[🔎] 4FF54BC8.9000207@locum.ru> <[🔎] 20120705084619.GR4080@codelibre.net>

>>>>> Roger Leigh <rleigh@codelibre.net> writes:
>>>>> On Thu, Jul 05, 2012 at 12:09:44PM +0400, stalker@locum.ru wrote:

[…]

 >> apt-key list show my key, but apt-get install mytestpackage show

 >> WARNING: The following packages cannot be authenticated!

 >> what i doing wrong?

 > You also need the Release file in the apt repository signing.
 > apt-get doesn't get check per-package signatures?  Individual
 > packages aren't signed by default; just the archive as a whole via
 > the Release/InRelease files.

	I've never used such a feature myself, but I believe that
	mini-dinstall(1) can maintain a signed Release file (and thus
	the repository.)

-- 
FSF associate member #7257

Reply to:

References:
- self signed repository
  - From: "stalker@locum.ru" <stalker@locum.ru>
- Re: self signed repository
  - From: Roger Leigh <rleigh@codelibre.net>

Prev by Date: Re: Small xorg?
Next by Date: Re: Alternative(s) to VirtualBox
Previous by thread: Re: self signed repository
Next by thread: Re: self signed repository
Index(es):
- Date
- Thread