On Thu, Jul 05, 2012 at 12:09:44PM +0400, stal...@locum.ru wrote: > > I sign packet with debsign > dpkg-sig --sign builder mytestpackage_1.2.3_amd64.deb > and add my key to apt-key > > gpg --armor --export >/tmp/mykey > and sudo apt-key add /tmp/mykey > > apt-key list show my key, but apt-get install mytestpackage show > WARNING: The following packages cannot be authenticated! > > what i doing wrong?
You also need the Release file in the apt repository signing. apt-get doesn't get check per-package signatures? Individual packages aren't signed by default; just the archive as a whole via the Release/InRelease files. Regards, Roger -- .''`. Roger Leigh : :' : Debian GNU/Linux http://people.debian.org/~rleigh/ `. `' schroot and sbuild http://alioth.debian.org/projects/buildd-tools `- GPG Public Key F33D 281D 470A B443 6756 147C 07B3 C8BC 4083 E800 -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20120705084619.gr4...@codelibre.net