"install software not from a trusted source" dialog could be more user friendly

Status changed to 'Confirmed' because the bug affects multiple users.

I also tripped over this on a fresh 16.10 install. It should certainly be fixed (as well as https://bugzilla.redhat.com/show_bug.cgi?id=569116 , frankly), but as a workaround, manually installing duplicity (e.g. sudo apt-get install duplicity) works fine (no warnings about untrusted software) got past this symptom for me.

Fake-edit: It looks like the expected Debian/Ubuntu way of solving this is to install deja-dup-backend-gvfs (which in turn depends on duplicity), thus supplying the requisite functionality for backing up to ssh, cifs, etc.

Additionally, I don't know if it should be considered an additional [Debian/Ubuntu-specific] bug that the Déjà Dup preferences UI does enable the buttons when duplicity is installed, even though the act of clicking the button is supposed to install deja-dup-backend-gvfs, but I thought I should point that out. (debian/patches/install-pygi.patch sets this to install deja-dup-backend-gvfs instead of duplicity, but leaves the 'installed' check to look for duplicity.)

It is expected that deja-dup would ask to install duplicity. Duplicity is not preinstalled, to avoid having python2 on disk. The fact that the packagekit dialog warns about untrusted sources makes me think you have PPAs installed and packagekit should display that in a kinder way (as that fedora bug suggests).

I don't think there's anything deja-dup can do here. I'll reassign to packagekit.

I didn't have any untrusted sources. Installing the package via apt install
works fine.

On 21 Aug 2017 19:11, "Michael Terry" <email address hidden> wrote:

> It is expected that deja-dup would ask to install duplicity. Duplicity
> is not preinstalled, to avoid having python2 on disk. The fact that the
> packagekit dialog warns about untrusted sources makes me think you have
> PPAs installed and packagekit should display that in a kinder way (as
> that fedora bug suggests).
>
> I don't think there's anything deja-dup can do here. I'll reassign to
> packagekit.
>
> ** Package changed: deja-dup (Ubuntu) => packagekit (Ubuntu)
>
> ** Summary changed:
>
> - deja-dup asks to install software not from a trusted source
> + "install software not from a trusted source" dialog could be more user
> friendly
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https://bugs.launchpad.net/bugs/1638510
>
> Title:
> "install software not from a trusted source" dialog could be more user
> friendly
>
> Status in packagekit package in Ubuntu:
> Confirmed
>
> Bug description:
> deja-dup opens a dialog "The software is not from a trusted source. Do
> not install this package unless you are sure it is safe to do so"
>
> But I'm obviously not sure it is safe to do so!
>
> ProblemType: Bug
> DistroRelease: Ubuntu 16.10
> Package: deja-dup 34.2-0ubuntu3
> ProcVersionSignature: Ubuntu 4.8.0-26.28-generic 4.8.0
> Uname: Linux 4.8.0-26-generic x86_64
> ApportVersion: 2.20.3-0ubuntu8
> Architecture: amd64
> CurrentDesktop: Unity
> Date: Wed Nov 2 09:51:06 2016
> InstallationDate: Installed on 2016-10-31 (1 days ago)
> InstallationMedia: Ubuntu 16.10 "Yakkety Yak" - Release amd64
> (20161012.2)
> SourcePackage: deja-dup
> UpgradeStatus: No upgrade log present (probably fresh install)
>
> To manage notifications about this bug go to:
> https://bugs.launchpad.net/ubuntu/+source/packagekit/+
> bug/1638510/+subscriptions
>