Re: How to use the debian installation iso for installing packages using aptitude

[Zenaan Harkness <zen@freedbms.net>]

On 8/18/13, Anubhav Yadav <anubhav1691@gmail.com> wrote:

>> OK, So because of that I'm guessing you need an entry like:
>> gpg: key cxdfddey: "Local Repository Key"
>> blah blah blah.
>>
>> So following the adage -- teach a man to fish ...
>>
>> Googling "how to authenticate a local repository Debian"
>> (leave off the quotes in the search box.)
>>
>> Returns, e.g.:
>>
>> http://forums.debian.net/viewtopic.php?f=16&t=60560
>> http://www.kanotix.com/PNphpBB2-viewtopic-t-18541.html
>> https://wiki.debian.org/SecureApt
..
> Thanks a lot for your help, the links you sent me all contain how to sign
> your own repository that you make for your own packages. Here I am using
> the debian repository. So I guess I will need to sign them with the
> official key. Where can I find that key?

:)

That would of course defeat the purpose of having an official key, if
anyone could sign packages officially.

Your key only.

> Also if I generate my own gpg key and sign the repository using that key,
> will it get authenticated?

I can't answer that.

But gpg-signing a 30GiB repo, package by package, just to avoid
warning messages?
</shudder>

There ought be a simple "I'm the admin, I know what I'm doing, please
override the checks for this repo" override.

Anyone?