Re: [PATCH] apt-key: receive key from keyserver
* Lubomir Host:
> $ gpg --list-keys --keyid-format long | tail -n 3
> pub 1024D/B5D0C804ADB11277 2006-09-17
> uid Etch Stable Release Key <debian-release@lists.debian.org>
>
>
> Of course, you can pass keyid in long format to apt-key.
The long key ID is easy to spoof, too. Just use a v3 key with a modulus
of n = pq, where p == 1 (mod 2**64) and q == B5D0C804ADB11277 (mod 2**64).
This can be achieved with the regular key generation process, by simply
starting from non-random p and q.
You do need the fingerprint. If you can enter that, you can also paste
the full key to "apt-key add -". If you don't need the security, you
can use "apt-get install debian-archive-keyring".
Reply to: