Public bug reported: It appears apt-get update is completely ignoring the allow- unauthenticated switch. This initially provided a significant roadblock to getting the system to recognize a trusted local repository as most literature and posts refer to use of this switch. I was able to discover a workaround though the time invested was steep. The [trusted=yes] option in sources.list(5) functions correctly and will bypass this authentication check. It would be helpful at a minimum if the apt --allow-unauthenticated description in the apt-get documentation referred to sources.list(5) option trusted=yes with an example if this switch is being deprecated.
Steps for Reproduction. Bootup 16.10 LiveCD Add to APT Sources deb file:/tmp/local/ ./ Run the command, "apt-get --allow-unauthenticated update" Output as follows with no internet connection: https://pastebin.com/6h8tiHbN *Initial apt-get --allow-unauthenticated update failed due to missing release file. Generated generic release file to obtain the above output. "apt install" for packages included cannot find desired package. Local repo was set up via these instructions: http://askubuntu.com/questions/170348/how-to-create-a-local-apt-repository Packages.gz was generated using the below command. dpkg-scanpackages ./ | gzip -9c > Packages.gz ** Affects: apt (Ubuntu) Importance: Undecided Status: New ** Tags: apt-get local-repository -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apt in Ubuntu. https://bugs.launchpad.net/bugs/1680261 Title: apt-secure ignoring allow-unauthenticated during apt-update Status in apt package in Ubuntu: New Bug description: It appears apt-get update is completely ignoring the allow- unauthenticated switch. This initially provided a significant roadblock to getting the system to recognize a trusted local repository as most literature and posts refer to use of this switch. I was able to discover a workaround though the time invested was steep. The [trusted=yes] option in sources.list(5) functions correctly and will bypass this authentication check. It would be helpful at a minimum if the apt --allow-unauthenticated description in the apt-get documentation referred to sources.list(5) option trusted=yes with an example if this switch is being deprecated. Steps for Reproduction. Bootup 16.10 LiveCD Add to APT Sources deb file:/tmp/local/ ./ Run the command, "apt-get --allow-unauthenticated update" Output as follows with no internet connection: https://pastebin.com/6h8tiHbN *Initial apt-get --allow-unauthenticated update failed due to missing release file. Generated generic release file to obtain the above output. "apt install" for packages included cannot find desired package. Local repo was set up via these instructions: http://askubuntu.com/questions/170348/how-to-create-a-local-apt-repository Packages.gz was generated using the below command. dpkg-scanpackages ./ | gzip -9c > Packages.gz To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apt/+bug/1680261/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp