Last Updated: September 30, 2021
·
4.481K
· ipoerner

Update GnuPG archive keys of the Debian archive

#debian
#gpg
#packages
#key
#gnupg
#etch
#sources.list
#signature

I recently ran into the following issue when attempting to update a fairly outdated Debian system:

$ apt-get update
[...]
Reading package lists... Done
W: There is no public key available for the following key IDs:
9AA38DCD55BE302B
W: GPG error: http://archive.debian.org etch/updates Release: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 9AA38DCD55BE302B
W: You may want to run apt-get update to correct these problems

Turns out the debian-archive-keyring package was out-of-date.

Fixing those kind of issues is merely a matter of performing a manual upgrade of that very package prior to apt-get update:

$ apt-get install debian-archive-keyring
Reading package lists... Done
Building dependency tree... Done
The following packages will be upgraded:
  debian-archive-keyring
1 upgraded, 0 newly installed, 0 to remove and 51 not upgraded.
Need to get 12.8kB of archives.
After unpacking 4096B of additional disk space will be used.
Get:1 http://archive.debian.org etch/main debian-archive-keyring 2009.01.31 [12.8kB]
Fetched 12.8kB in 0s (18.8kB/s)          
(Reading database ... 17716 files and directories currently installed.)
Preparing to replace debian-archive-keyring 2007.07.31~etch1 (using .../debian-archive-keyring_2009.01.31_all.deb) ...
Unpacking replacement debian-archive-keyring ...
Setting up debian-archive-keyring (2009.01.31) ...
gpg: key 6070D3A1: "Debian Archive Automatic Signing Key (4.0/etch) <ftpmaster@debian.org>" not changed
gpg: key ADB11277: "Etch Stable Release Key <debian-release@lists.debian.org>" not changed
gpg: key BBE55AB3: "Debian-Volatile Archive Automatic Signing Key (4.0/etch)" not changed
gpg: key F42584E6: public key "Lenny Stable Release Key <debian-release@lists.debian.org>" imported
gpg: key 55BE302B: public key "Debian Archive Automatic Signing Key (5.0/lenny) <ftpmaster@debian.org>" imported
gpg: key 6D849617: public key "Debian-Volatile Archive Automatic Signing Key (5.0/lenny)" imported
gpg: Total number processed: 6
gpg:               imported: 3  (RSA: 2)
gpg:              unchanged: 3
gpg: no ultimately trusted keys found

NOTE: It is very risky to stick to a system that doesn't even receive the most essential security updates anymore. You should seriously consider updating to a newer version.

#debian
#gpg
#packages
#key
#gnupg
#etch
#sources.list
#signature

Written by Ingmar

Say Thanks
Respond

Related protips

Connecting to a MSSQL Server/Database With PHP on Ubuntu/Debian

62.35K
2

How to create debian package from source

48.8K
2

Linode Debian 7 web server setup

38.95K
3

Have a fresh tip? Share with Coderwall community!

Post
Post a tip
Best #Debian Authors
shabbirh
62.09K
#debian
#Ruby
#Shell
gwinn
48.47K
#debian
#C
#PHP
nekwebdev
38.93K
#debian
#PHP
#Open Source
Alisue Lambda
17.77K
#debian
rparet
16.98K
#debian
#Shell
#Lua
Related Tags
#debian
#gpg
#packages
#key
#gnupg
#etch
#sources.list
#signature
Sponsored by
#native_company#
#native_desc#
#native_cta#
Filed Under
Tools
Awesome Job
See All Jobs
Post a job for only $299
Thanks to our sponsor
Sponsored by #native_company# — Learn More
#native_title# #native_desc#
#native_cta#