Difference between revisions of "Using gpg-authenticated debian-archives"

From FAIWiki
Jump to: navigation, search
Line 1: Line 1:
 +
do this inside the nfsroot if needed:
 +
 
apt-get install gnupg debian-keyring ;  gpg --recv-keys 4F368D5D
 
apt-get install gnupg debian-keyring ;  gpg --recv-keys 4F368D5D
  
 +
FAI_DEBOOTSTRAP_OPTS="--include=gnupg" is half of whats needed.
  
  

Revision as of 14:11, 7 December 2005

do this inside the nfsroot if needed:

apt-get install gnupg debian-keyring ; gpg --recv-keys 4F368D5D

FAI_DEBOOTSTRAP_OPTS="--include=gnupg" is half of whats needed.


For people running an archive repository

(taken from http://wiki.debian.org/apt06 - go to that page and read it!)

If you run a archive make sure that you have a toplevel Release file (create it with apt-ftparchive release) and sign it a key (with gpg -abs -o Release.gpg Release). Then tell your users what key they need to import.

howto create a local mirror incl. security.debian.org

http://www.psycast.de/blog/?postid=30 (german, will do a translation soon)