Re: apt config options to specify the CA of the https repository?

To: Debian-user Mailing List <debian-user@lists.debian.org>
Subject: Re: apt config options to specify the CA of the https repository?
From: Jeffrey Walton <noloader@gmail.com>
Date: Fri, 19 Sep 2025 14:27:59 -0400
Message-id: <[🔎] CAH8yC8nwozem7-02CTq_v2C0wbtwTiPk3VBeStUC2WyznR1Fhw@mail.gmail.com>
Reply-to: noloader@gmail.com
In-reply-to: <[🔎] AS8PR01MB7462042C1B6C2FF7E4DDA39F8511A@AS8PR01MB7462.eurprd01.prod.exchangelabs.com>
References: <[🔎] AS8PR01MB7462042C1B6C2FF7E4DDA39F8511A@AS8PR01MB7462.eurprd01.prod.exchangelabs.com>

On Fri, Sep 19, 2025 at 1:45 PM Harald Dunkel <harald.dunkel@aixigo.com> wrote:
>
> is there some way to tell apt the path to the root CA certificate, so it could
> verify the certificate chain provided by a private debian repository via https?
> I had added tho root CA to /usr/local/share/ca-certificates seem and ran
> update-ca-certificates, but this did not help.
>
> Hopefully I am not too blind to see, but apt.conf(5) and the others don't
> mention certificates.

It might be a good idea to backup a bit, and state the problem you are
trying to solve.

The list of MD5 sums of each package is signed, so their authenticity
can be verified using the signature.  See
<https://www.debian.org/doc/manuals/securing-debian-manual/deb-pack-sign.en.html>.

Jeff

Reply to:

Follow-Ups:
- Re: apt config options to specify the CA of the https repository?
  - From: Vincent Lefevre <vincent@vinc17.net>

References:
- apt config options to specify the CA of the https repository?
  - From: Harald Dunkel <harald.dunkel@aixigo.com>

Prev by Date: Re: Laptop resumes each 1h13 after suspend-to-ram
Next by Date: Re: apt config options to specify the CA of the https repository?
Previous by thread: apt config options to specify the CA of the https repository?
Next by thread: Re: apt config options to specify the CA of the https repository?
Index(es):
- Date
- Thread