adding debian PGP Keys
Tez
binary_y2k2 at blueyonder.co.uk
Thu Mar 22 16:51:15 UTC 2007
Nigel Ridley wrote:
> I am trying to install scribus from the debian archives (there is a bug in the
> *ubuntu version) per:
> http://wiki.scribus.net/index.php/Getting_Scribus_on_Ubuntu/Kubuntu_up_and_running
>
> <quote>
> Using cryptographic repository signatures
>
> Our repositories are cryptographically signed for added security. Add the gpg-keys
> for our repositories to avoid having to confirm your installation choice to the
> package manager each time you update a scribus or scribus-ng package.
>
> New keys
> "If you are using our upstream repositories of Debian/Ubuntu Scribus packages you
> will notice during your next package upgrade that apt/aptitude complains about not
> having the right key. The reason for it is that as of today the key used for
> signing our repositories has been changed." by Alex (Malex).
>
> root$ gpg --keyserver subkeys.pgp.net --recv-keys EEF818CF
> root$ gpg --armor --export EEF818CF | apt-key add -
>
> or as a normal user (with an appropriate entry for apt-key in the sudoers file):
>
> user$ (sudo) gpg --keyserver subkeys.pgp.net --recv-keys EEF818CF
> user$ (sudo) gpg --armor --export EEF818CF | sudo apt-key add -
> <end quote>
>
> But I get an error:
>
> nigel at nigels:~$ sudo gpg --keyserver subkeys.pgp.net --recv-keys EEF818CF
> Password:
> gpg: WARNING: unsafe ownership on configuration file `/home/nigel/.gnupg/gpg.conf'
> gpg: external program calls are disabled due to unsafe options file permissions
> gpg: keyserver communications error: general error
> gpg: keyserver receive failed: general error
> nigel at nigels:~$ sudo gpg --armor --export EEF818CF | apt-key add -
> gpg: WARNING: unsafe ownership on configuration file `/home/nigel/.gnupg/gpg.conf'
> gpg: WARNING: nothing exported
> gpg: no valid OpenPGP data found.
>
> I did try changing the permissions to 'Owner: root Group: root' but ended up with
> a different error:
>
> nigel at nigels:~$ sudo gpg --keyserver subkeys.pgp.net --recv-keys EEF818CF; gpg
> --armor --export EEF818CF | sudo apt-key add -
> Password:
> gpg: requesting key EEF818CF from hkp server subkeys.pgp.net
> gpg: key EEF818CF: "Scribus Debian Archive Signing Key <debian at scribus.info>" not
> changed
> gpg: Total number processed: 1
> gpg: unchanged: 1
> gpg: failed to create temporary file
> `/home/nigel/.gnupg/.#lk0x5e0af0.nigels.27113': Permission denied
> gpg: keyblock resource `/home/nigel/.gnupg/secring.gpg': general error
> gpg: failed to create temporary file
> `/home/nigel/.gnupg/.#lk0x5e0af0.nigels.27113': Permission denied
> gpg: keyblock resource `/home/nigel/.gnupg/pubring.gpg': general error
> gpg: WARNING: nothing exported
> gpg: no valid OpenPGP data found.
> nigel at nigels:~$
>
> So how do I add the keys?
>
> Blessings,
>
> Nigel
>
>
That file (/home/nigel/.gnupg/gpg.conf) needs to be owned by YOU, not
root, so:
sudo chown nigel:nigel /home/nigel/.gnupg/gpg.conf
and the permissions are so the user can read+write, so
sudo chmod 600 /home/nigel/.gnupg/gpg.conf
Then the commands should work.
Tez
More information about the kubuntu-users
mailing list