Ubuntu
debian-archive-keyring package

Should document keys are not trusted by default

Bug #1820586 reported by Matthijs Kooijman
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
debian-archive-keyring (Ubuntu)
Fix Released
Undecided
Unassigned

Bug Description

Since version 2017.7ubuntu1, the keys installed by the Ubuntu version of debian-archive-keyring are no longer trusted by default. Coming from Debian, this surprised me, but now I've found the changelog entry, I understand the reasoning.

Initially, though, I had expected installing debian-archive-keyring to be sufficient to trust the debian archive keys. When it did not work, I checked the README, which does not help here (in fact, it seems to erronously document that keys *are* placed in trusted.gpg.d).

I would suggest improving the README:
 - Note that this package differs from the Debian version and does not install keys as trusted.
 - Provide a suggestion (preferably a copy-pastable shell command) on how to make these keys trusted.

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package debian-archive-keyring - 2021.1.1ubuntu2

---------------
debian-archive-keyring (2021.1.1ubuntu2) jammy; urgency=medium

  * Document the fact that the keys are disabled in APT for Ubuntu
    (LP: #1820586)

 -- Simon Chopin <email address hidden> Tue, 25 Jan 2022 18:51:18 +0100

Changed in debian-archive-keyring (Ubuntu):
status: New → Fix Released
Revision history for this message
Matthijs Kooijman (matthijskooijman) wrote :

Looks good, thanks!

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.