On Tue, Aug 30, 2016 at 12:58:47PM -0700, Larry Dighera wrote:
This page <https://www.debian.org/releases/stable/errata> states: "If you use APT, add the following line to /etc/apt/sources.list to be able to access the latest security updates: deb http://security.debian.org/ jessie/updates main contrib non-free After that, run apt-get update followed by apt-get upgrade." Adding that entry to /etc/apt/sources.list on the Raspberry Pi3 running Debian Jessie results in an error message indicating that the public key is not found. It also finds two libraries that require updating that are not found when the above mentioned /etc/apt/sources.list entry is removed.
As other people are discussing how to avoid the problems, let me have a go at answering your questions directly.
1. What do I need to do to prevent the error message?
Check that "debian-archive-keyring" is installed. If that is showing as untrusted as well, then read https://ftp-master.debian.org/keys.html. Note the warning at the top, though: "Please note that the details here are for information only, you should not rely on them and use other ways to verify them."
2. As there are other security related URLs (doubtless, as distributed/released) that are checked during apt-get update, is the recommended additional entry advisable/useful for this platform?
If you're running Debian, then that line should provide all the security updates you require. If you've added other repositories, though (PPAs, for example, or if you're using a debian-derived distribution such as Ubuntu, Mint, Devuan etc), then you should consult THOSE projects individually to see if they provide security updates (they may simply provide a rolling "bleeding edge" update model instead).
-- For more information, please reread.
Attachment:
signature.asc
Description: PGP signature