OESF Portal | OESF Forum | OESF Wiki | LinuxPDA | #planetgemini chat on matrix.org | #gemini-pda chat on Freenode | #zaurus and #alarmz chat on Freenode | ELSI (coming soon) | Ibiblio

IPB

Welcome Guest ( Log In | Register )

 
Reply to this topicStart new topic
> Unsigned repository
Neil Sands
post Jan 15 2020, 01:51 PM
Post #1





Group: Members
Posts: 4
Joined: 31-December 19
Member No.: 862,505



I have Android and Gemian TP3 on my Gemini.

If I do sudo apt-get update, I get an error message, not always exactly the same but this one is typical.

QUOTE
W: GPG error: http://gemian.thinkglobally.org/stretch stretch InRelease: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 6669378035F4918C
W: The repository 'http://gemian.thinkglobally.org/stretch stretch InRelease' is not signed.


I don't fully understand the implications of this. Can I force the upgrade to work with an unsigned repository somehow, and if so is it wise to do so?

Is anyone else getting this? Or am I special?

Thanks
Neil
Go to the top of the page
 
+Quote Post
mithrandir
post Jan 15 2020, 01:59 PM
Post #2





Group: Members
Posts: 180
Joined: 7-January 18
Member No.: 815,997



QUOTE(Neil Sands @ Jan 15 2020, 01:51 PM) *
I don't fully understand the implications of this. Can I force the upgrade to work with an unsigned repository somehow, and if so is it wise to do so?

The key has been renewed recently.

wget -O /tmp/archive-key.asc http://gemian.thinkglobally.org/archive-key.asc
apt-key add /tmp/archive-key.asc
Go to the top of the page
 
+Quote Post
Neil Sands
post Jan 16 2020, 03:17 PM
Post #3





Group: Members
Posts: 4
Joined: 31-December 19
Member No.: 862,505



QUOTE(mithrandir @ Jan 15 2020, 09:59 PM) *
The key has been renewed recently.

wget -O /tmp/archive-key.asc http://gemian.thinkglobally.org/archive-key.asc
apt-key add /tmp/archive-key.asc


Wonderful, that's worked very nicely. Thanks.
Go to the top of the page
 
+Quote Post
gemini_user_j
post Mar 31 2020, 11:06 AM
Post #4





Group: Members
Posts: 68
Joined: 9-August 18
Member No.: 827,849



QUOTE(mithrandir @ Jan 15 2020, 01:59 PM) *
QUOTE(Neil Sands @ Jan 15 2020, 01:51 PM) *
I don't fully understand the implications of this. Can I force the upgrade to work with an unsigned repository somehow, and if so is it wise to do so?

The key has been renewed recently.

wget -O /tmp/archive-key.asc http://gemian.thinkglobally.org/archive-key.asc
apt-key add /tmp/archive-key.asc


probably wise to use https here:
https://gemian.thinkglobally.org/archive-key.asc
Go to the top of the page
 
+Quote Post
geminifrench
post Mar 31 2020, 12:53 PM
Post #5





Group: Members
Posts: 28
Joined: 17-December 19
From: France
Member No.: 861,498



working for me in http.

see here : https://www.oesf.org/forum/index.php?showtopic=36209
section [3.5.1]
Go to the top of the page
 
+Quote Post
gemini_user_j
post Apr 1 2020, 10:27 AM
Post #6





Group: Members
Posts: 68
Joined: 9-August 18
Member No.: 827,849



QUOTE(geminifrench @ Mar 31 2020, 12:53 PM) *
working for me in http.

see here : https://www.oesf.org/forum/index.php?showtopic=36209
section [3.5.1]


Not a question if it works or not, rather a simple precaution to use encrypted data traffic.

Just thought it was particularly relevant when downloading the key used for verifying software packages wink.gif

Go to the top of the page
 
+Quote Post

Reply to this topicStart new topic
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:

 



RSS Lo-Fi Version Time is now: 11th July 2020 - 03:18 PM