adding debian PGP Keys

Thu Mar 22 21:44:53 UTC 2007

Nigel Ridley wrote:
> Tez wrote:
>   
>> Nigel Ridley wrote:
>>     
>>> I am trying to install scribus from the debian archives (there is a bug in the 
>>> *ubuntu version) per:
>>> http://wiki.scribus.net/index.php/Getting_Scribus_on_Ubuntu/Kubuntu_up_and_running
>>>
>>> <quote>
>>>   Using cryptographic repository signatures
>>>
>>> Our repositories are cryptographically signed for added security. Add the gpg-keys 
>>> for our repositories to avoid having to confirm your installation choice to the 
>>> package manager each time you update a scribus or scribus-ng package.
>>>
>>> New keys
>>> "If you are using our upstream repositories of Debian/Ubuntu Scribus packages you 
>>> will notice during your next package upgrade that apt/aptitude complains about not 
>>> having the right key. The reason for it is that as of today the key used for 
>>> signing our repositories has been changed." by Alex (Malex).
>>>
>>> root$ gpg --keyserver subkeys.pgp.net --recv-keys EEF818CF
>>> root$ gpg --armor --export EEF818CF | apt-key add -
>>>
>>> or as a normal user (with an appropriate entry for apt-key in the sudoers file):
>>>
>>> user$ (sudo) gpg --keyserver subkeys.pgp.net --recv-keys EEF818CF
>>> user$ (sudo) gpg --armor --export EEF818CF | sudo apt-key add -
>>> <end quote>
>>>
>>> But I get an error:
>>>
>>> nigel at nigels:~$ sudo gpg --keyserver subkeys.pgp.net --recv-keys EEF818CF
>>> Password:
>>> gpg: WARNING: unsafe ownership on configuration file `/home/nigel/.gnupg/gpg.conf'
>>> gpg: external program calls are disabled due to unsafe options file permissions
>>> gpg: keyserver communications error: general error
>>> gpg: keyserver receive failed: general error
>>> nigel at nigels:~$ sudo gpg --armor --export EEF818CF | apt-key add -
>>> gpg: WARNING: unsafe ownership on configuration file `/home/nigel/.gnupg/gpg.conf'
>>> gpg: WARNING: nothing exported
>>> gpg: no valid OpenPGP data found.
>>>
>>> I did try changing the permissions to 'Owner: root Group: root' but ended up with 
>>> a different error:
>>>
>>> nigel at nigels:~$ sudo gpg --keyserver subkeys.pgp.net --recv-keys EEF818CF; gpg 
>>> --armor --export EEF818CF | sudo apt-key add -
>>> Password:
>>> gpg: requesting key EEF818CF from hkp server subkeys.pgp.net
>>> gpg: key EEF818CF: "Scribus Debian Archive Signing Key <debian at scribus.info>" not 
>>> changed
>>> gpg: Total number processed: 1
>>> gpg:              unchanged: 1
>>> gpg: failed to create temporary file 
>>> `/home/nigel/.gnupg/.#lk0x5e0af0.nigels.27113': Permission denied
>>> gpg: keyblock resource `/home/nigel/.gnupg/secring.gpg': general error
>>> gpg: failed to create temporary file 
>>> `/home/nigel/.gnupg/.#lk0x5e0af0.nigels.27113': Permission denied
>>> gpg: keyblock resource `/home/nigel/.gnupg/pubring.gpg': general error
>>> gpg: WARNING: nothing exported
>>> gpg: no valid OpenPGP data found.
>>> nigel at nigels:~$
>>>
>>> So how do I add the keys?
>>>
>>> Blessings,
>>>
>>> Nigel
>>>
>>>   
>>>       
>> That file (/home/nigel/.gnupg/gpg.conf) needs to be owned by YOU, not 
>> root, so:
>> sudo chown nigel:nigel /home/nigel/.gnupg/gpg.conf
>> and the permissions are so the user can read+write, so
>> sudo chmod 600 /home/nigel/.gnupg/gpg.conf
>>
>> Then the commands should work.
>>
>> Tez
>>
>>
>>
>>     
>
> No-go :-(
>
> nigel at nigels:~$ sudo chown nigel:nigel /home/nigel/.gnupg/gpg.conf
> Password:
> nigel at nigels:~$ sudo chmod 600 /home/nigel/.gnupg/gpg.conf
> nigel at nigels:~$ sudo gpg --keyserver subkeys.pgp.net --recv-keys EEF818CF; gpg 
> --armor --export EEF818CF | sudo apt-key add -
> gpg: WARNING: unsafe ownership on configuration file `/home/nigel/.gnupg/gpg.conf'
> gpg: external program calls are disabled due to unsafe options file permissions
> gpg: keyserver communications error: general error
> gpg: keyserver receive failed: general error
> OK
> nigel at nigels:~$
>
> Any other ideas?
>
> Blessings,
>
> Nigel
>
>   
Ahh, you're using sudo gpg, drop that sudo, you only need a sudo with 
the apt-key command.

Tez