retitle 294980 More ignoring --ignore-release-gpg option wanted
severity 294980 wishlist
thanks
Jeroen van Wolffelaar <[EMAIL PROTECTED]> writes:
> Package: debmirror
> Version: 20050207
> Severity: normal
>
> Even though I specify --ignore-release-gpg, I get the following:
>
> gpg: Signature made Fri Feb 11 21:26:54 2005 CET using DSA key ID 4F368D5D
> gpg: Can't check signature: public key not found
> Release signature does not verify.
>
> So, the Release.gpg does not get ignored, failing the check is merely
> non-fatal.
>
> --Jeroen
That was intentional. It ignores an error in the check but not the
check itself. It is for cases like the Debian archive key expiring as
it does every year.
I consider a mirror without this check dangerous but I will see what I
can do. It's low priority though since it's only a warning.
MfG
Goswin
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
