make apt-get stop bothering me about signatures

Mark Haney mhaney at ercbroadband.org
Wed Sep 3 19:04:07 UTC 2008


Paul Johnson wrote:
re is a weakness in apt-get compared
> against yum in Fedora.  You seem to say it is necessary for me to
> accept all unsigned packages, rather than simply accepting unsigned
> packages from one particular trusted site.


I'm not sure I understand this statement. You can set the same behaviour 
in yum, so I don't think it's inherently safer than apt.  I thought 
there was a way to edit the sources in Ubuntu to allow unsigned packages 
from a particular repo similar to what yum does?

Regardless, if you want unsigned packages, download them, MD5SUM them, 
then install with dpkg.  That is a safer option in my mind than making 
apt insecure.




-- 
Libenter homines id quod volunt credunt -- Caius Julius Caesar


Mark Haney
Sr. Systems Administrator
ERC Broadband
(828) 350-2415

Call (866) ERC-7110 for after hours support




More information about the ubuntu-users mailing list