Using gpg-authenticated debian-archives: Difference between revisions
Jump to navigation
Jump to search
mNo edit summary |
No edit summary |
||
| Line 5: | Line 5: | ||
apt-get install gnupg debian-keyring ; gpg --recv-keys 4F368D5D | apt-get install gnupg debian-keyring ; gpg --recv-keys 4F368D5D | ||
This info is wron in my opinion! The new key ID is: 2D230C5F, at least I just had a problem with this when making a mirror. | |||
FAI_DEBOOTSTRAP_OPTS="--include=gnupg" is half of whats needed. | FAI_DEBOOTSTRAP_OPTS="--include=gnupg" is half of whats needed. | ||
Revision as of 19:09, 20 July 2006
read http://wiki.debian.org/SecureApt
do this inside the nfsroot if needed:
apt-get install gnupg debian-keyring ; gpg --recv-keys 4F368D5D
This info is wron in my opinion! The new key ID is: 2D230C5F, at least I just had a problem with this when making a mirror.
FAI_DEBOOTSTRAP_OPTS="--include=gnupg" is half of whats needed.
For people running an archive repository
(taken from http://wiki.debian.org/apt06 - go to that page and read it!)
If you run a archive make sure that you have a toplevel Release file (create it with apt-ftparchive release) and sign it a key (with gpg -abs -o Release.gpg Release). Then tell your users what key they need to import.
howto create a local mirror incl. security.debian.org
http://www.psycast.de/blog/?postid=30 (german, will do a translation soon)