BADSIG verifying s.d.o Release file
I've been seeing this a bunch in the past few weeks. Just making sure you know about it, and maybe someone knows what's going on: W: GPG error: http://security.debian.org stable/updates Release: The following signatures were invalid: BADSIG 010908312D230C5F Debian Archive Automatic Signing Key (2006) [EMAIL PROTECTED] Cheers, -- .''`. martin f. krafft [EMAIL PROTECTED] : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system if a man treats life artistically, his brain is his heart. -- oscar wilde signature.asc Description: Digital signature (GPG/PGP)
Re: BADSIG verifying s.d.o Release file
On Fri, 30 Jun 2006 09:15:42 +0200 martin f krafft [EMAIL PROTECTED] wrote: hi, I've been seeing this a bunch in the past few weeks. Just making sure you know about it, and maybe someone knows what's going on: W: GPG error: http://security.debian.org stable/updates Release: The following signatures were invalid: BADSIG 010908312D230C5F Debian Archive Automatic Signing Key (2006) [EMAIL PROTECTED] Almost the same for etch... http://security.debian.org/debian-security/dists/etch/updates/Release.gpg is empty too. aptitude update W: GPG error: http://security.debian.org etch/updates Release: Unknown error executing gpgv Kurt Neuenfeldt Cheers, -- .''`. martin f. krafft [EMAIL PROTECTED] : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system if a man treats life artistically, his brain is his heart. -- oscar wilde -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: BADSIG verifying s.d.o Release file
On Fri, Jun 30, 2006 at 09:15:42AM +0200, martin f krafft wrote: I've been seeing this a bunch in the past few weeks. Just making sure you know about it, and maybe someone knows what's going on: W: GPG error: http://security.debian.org stable/updates Release: The following signatures were invalid: BADSIG 010908312D230C5F Debian Archive Automatic Signing Key (2006) [EMAIL PROTECTED] This is a known issue, relating to some of the infrastructure changes. Hopefully it will be resolved shortly. Currently each of the release files are empty... Steve -- signature.asc Description: Digital signature
Re: BADSIG verifying s.d.o Release file
also sprach Steve Kemp [EMAIL PROTECTED] [2006.06.30.1004 +0200]: This is a known issue, relating to some of the infrastructure changes. Hopefully it will be resolved shortly. Thanks Steve. Do you know why this was not publicised beforehand on debian-security-announce or debian-announce? -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft [EMAIL PROTECTED] : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system lessing was a heretics' heretic -- walter kaufmann signature.asc Description: Digital signature (GPG/PGP)
Re: BADSIG verifying s.d.o Release file
On Fri, Jun 30, 2006 at 10:33:55AM +0200, martin f krafft wrote: also sprach Steve Kemp [EMAIL PROTECTED] [2006.06.30.1004 +0200]: This is a known issue, relating to some of the infrastructure changes. Hopefully it will be resolved shortly. Thanks Steve. Do you know why this was not publicised beforehand on debian-security-announce or debian-announce? I think nobody thought of it to be honest, and people started to notice just around the time we did. (The problem here comes from the new dak software being used to handle the archive, and this is just a problem that hadn't been spotted since we've only just started releasing advisories with it.) Steve -- signature.asc Description: Digital signature
Re: BADSIG verifying s.d.o Release file
also sprach Steve Kemp [EMAIL PROTECTED] [2006.06.30.1043 +0200]: I think nobody thought of it to be honest, and people started to notice just around the time we did. (The problem here comes from the new dak software being used to handle the archive, and this is just a problem that hadn't been spotted since we've only just started releasing advisories with it.) Ok. Thanks for your time and the explanation, Steve. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft [EMAIL PROTECTED] : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system it takes more keystrokes to enter a windows license key than it takes to do a complete debian desktop install! -- joey hess signature.asc Description: Digital signature (GPG/PGP)
Re: BADSIG verifying s.d.o Release file
martin f krafft wrote: I've been seeing this a bunch in the past few weeks. Just making sure you know about it, and maybe someone knows what's going on: W: GPG error: http://security.debian.org stable/updates Release: The following signatures were invalid: BADSIG 010908312D230C5F Debian Archive Automatic Signing Key (2006) [EMAIL PROTECTED] Could the reason be that the Release.gpg file has a size of zero? If so, I've already informed ftpmasters. If not, what's the other cause? Regards, Joey -- Those who don't understand Unix are condemned to reinvent it, poorly. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: BADSIG verifying s.d.o Release file
also sprach Martin Schulze [EMAIL PROTECTED] [2006.06.30.1450 +0200]: W: GPG error: http://security.debian.org stable/updates Release: The following signatures were invalid: BADSIG 010908312D230C5F Debian Archive Automatic Signing Key (2006) [EMAIL PROTECTED] Could the reason be that the Release.gpg file has a size of zero? If so, I've already informed ftpmasters. If not, what's the other cause? I don't know. My file was *not* zero, it was really a BADSIG. Now it seems fixed though. -- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft [EMAIL PROTECTED] : :' :proud Debian developer and author: http://debiansystem.info `. `'` `- Debian - when you have better things to do than fixing a system military justice is to justice what military music is to music. -- groucho marx signature.asc Description: Digital signature (GPG/PGP)