https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7873
Bug ID: 7873
Summary: sa-update warning - key is not certified with a
trusted signature
Product: Spamassassin
Version: 3.4.4
Hardware: PC
OS: Linux
Status: NEW
Severity: normal
Priority: P2
Component: sa-update
Assignee: [email protected]
Reporter: [email protected]
Target Milestone: Undefined
Many time I get this message in Ubuntu 20.04.1 LTS:
/etc/cron.daily/spamassassin:
channel 'updates.spamassassin.org': could not find working mirror, channel
failed sa-update failed for unknown reasons
If I do a manual update using 'sa-update -D' it works but with warnings.
So I guess this is related to the keys used, which are not trusted?
gpg: WARNING: This key is not certified with a trusted signature!
gpg: There is no indication that the signature belongs to the owner.
Some logging:
Dec 6 07:46:21.390 [30989] dbg: generic: SpamAssassin version 3.4.4
Dec 6 07:46:21.390 [30989] dbg: generic: Perl 5.030000, PREFIX=/usr,
DEF_RULES_DIR=/usr/share/spamassassin, LOCAL_RULES_DIR=/etc/spamassassin,
LOCAL_STATE_DIR=/var/lib/spamassassin
Dec 6 07:46:21.391 [30989] dbg: config: timing enabled
Dec 6 07:46:21.391 [30989] dbg: config: score set 0 chosen.
Dec 6 07:46:21.395 [30989] dbg: generic: sa-update version 3.4.4 / svn1869639
Dec 6 07:46:21.395 [30989] dbg: generic: using update directory:
/var/lib/spamassassin/3.004004
Dec 6 07:46:21.796 [30989] dbg: diag: perl platform: 5.030000 linux
...
Dec 6 07:46:22.194 [30989] dbg: gpg: calling gpg
Dec 6 07:46:22.222 [30989] dbg: gpg: [GNUPG:] NEWSIG
Dec 6 07:46:22.223 [30989] dbg: gpg: gpg: Signature made Sun 06 Dec 2020
04:09:51 AM CET
Dec 6 07:46:22.223 [30989] dbg: gpg: gpg: using RSA key
0C2B1D7175B852C64B3CDC716C55397824F434CE
Dec 6 07:46:22.224 [30989] dbg: gpg: [GNUPG:] KEY_CONSIDERED
5E541DC959CB8BAC7C78DFDC4056A61A5244EC45 0
Dec 6 07:46:22.224 [30989] dbg: gpg: [GNUPG:] SIG_ID
6tRIsbr/v4jp4W94M98Sc0RVB4Y 2020-12-06 1607224191
Dec 6 07:46:22.224 [30989] dbg: gpg: [GNUPG:] KEY_CONSIDERED
5E541DC959CB8BAC7C78DFDC4056A61A5244EC45 0
Dec 6 07:46:22.225 [30989] dbg: gpg: [GNUPG:] GOODSIG 6C55397824F434CE
updates.spamassassin.org Signing Key <[email protected]>
Dec 6 07:46:22.225 [30989] dbg: gpg: gpg: Good signature from
"updates.spamassassin.org Signing Key <[email protected]>" [unknown]
Dec 6 07:46:22.225 [30989] dbg: gpg: [GNUPG:] VALIDSIG
0C2B1D7175B852C64B3CDC716C55397824F434CE 2020-12-06 1607224191 0 4 0 1 10 00
5E541DC959CB8BAC7C78DFDC4056A61A5244EC45
Dec 6 07:46:22.226 [30989] dbg: gpg: [GNUPG:] KEY_CONSIDERED
5E541DC959CB8BAC7C78DFDC4056A61A5244EC45 0
Dec 6 07:46:22.226 [30989] dbg: gpg: [GNUPG:] KEY_CONSIDERED
5E541DC959CB8BAC7C78DFDC4056A61A5244EC45 0
Dec 6 07:46:22.227 [30989] dbg: gpg: [GNUPG:] TRUST_UNDEFINED 0 pgp
Dec 6 07:46:22.227 [30989] dbg: gpg: gpg: WARNING: This key is not certified
with a trusted signature!
Dec 6 07:46:22.227 [30989] dbg: gpg: gpg: There is no indication that the
signature belongs to the owner.
Dec 6 07:46:22.227 [30989] dbg: gpg: Primary key fingerprint: 5E54 1DC9 59CB
8BAC 7C78 DFDC 4056 A61A 5244 EC45
Dec 6 07:46:22.227 [30989] dbg: gpg: Subkey fingerprint: 0C2B 1D71 75B8 52C6
4B3C DC71 6C55 3978 24F4 34CE
Dec 6 07:46:22.227 [30989] dbg: gpg: [GNUPG:] VERIFICATION_COMPLIANCE_MODE 23
Dec 6 07:46:22.228 [30989] dbg: gpg: found signature made by key
0C2B1D7175B852C64B3CDC716C55397824F434CE
Dec 6 07:46:22.228 [30989] dbg: gpg: key id
0C2B1D7175B852C64B3CDC716C55397824F434CE is release trusted
Dec 6 07:46:22.228 [30989] dbg: channel: file verification passed, testing
update
Dec 6 07:46:22.228 [30989] dbg: channel: extracting archive
...
--
You are receiving this mail because:
You are the assignee for the bug.
