Re: Expired GPG keys of older release
- Date: Tue, 19 Jun 2018 21:52:42 +0200
- From: john doe <johndoe65534@xxxxxxxx>
- Subject: Re: Expired GPG keys of older release
On 6/19/2018 8:33 PM, john doe wrote:
On 6/19/2018 9:22 AM, Adam Cecile wrote:
GPG key that signed the Squeeze repo is now expired. How should I
handle this properly ? Despite the key is expired, it use to be valid
and I don't like much the idea of going for [trusted=yes] for each
impacted sources.list entry.
Sadly, if the expiry date of the key is not extended there is little you
can do beyond insuring that the key in your keyring is up-to-date which
is normaly done automatically on Debian.
Googling this gives some things to try.
you could try:
"# Fetch a key from the keyring
$ gpg --keyserver keyring.debian.org --recv-key 0xkeyid"
Where <0xkeyid> is the keyid to be updated.
I don't use squeeze so I can't properly test it! :)