gpg error fix

Mika Suomalainen mika.henrik.mainio at hotmail.com
Sat May 5 11:15:20 UTC 2012 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

05.05.2012 01:51, Verde Denim kirjoitti:
> I setup Ubuntu 12.04 on a new machine today and in the course of 
> updating apt got a GPG error for ppa.launchpad. After some 
> googling, I was able to find this fix -
> 
> 1) gpg --keyserver keyserver.ubuntu.com 
> <http://keyserver.ubuntu.com> --recv <last 8 digits of key>

This command downloads the GPG key from launchpad.

> 2) gpg --export --armor <last 8 digits of key> | sudo apt-key add 
> -

This command exports the gpg key in ASCII format and adds it to apt's
keyring.

> But wanted to know why this works. A brief explanation would be 
> most helpful; thanks.

Apt uses GPG to check that the packages, which it installs aren't
modified or corrupted after they were created. To check the GPG
signature of package, it need the public key of the signer of package.

You can test it with this email. Run "gpg" in terminal and copy-paste
this email into it. First it complains about missing public key 82A46728.
Then get my key from keyserver by running "gpg --keyserver
keyserver.ubuntu.com --recv-keys 82A46728" and run gpg again and paste
this email to it. Now it should tell you "Good signature from user
Mika Suomalainen" and warn you that my key isn't signed by my key.
I think that Apt receives similar error message if it cannot check the
validity of package.

I hope that this helps.

PS. If I am wrong in some part, please correct me.

- -- 
Mika Suomalainen
gpg --keyserver pool.sks-keyservers.net --recv-keys 4DB53CFE82A46728
Key fingerprint = 24BC 1573 B8EE D666 D10A  AA65 4DB5 3CFE 82A4 6728

Please don't toppost, if possible
https://wiki.debian.org/FAQsFromDebianUser#What_is_top-posting_.28and_why_shouldn.27t_I_do_it.29.3F

Please don't send HTML, if possible. It's possible with most of
clients, even with webmails, see:
https://wiki.debian.org/DebianMailingLists#HowTo_send_plain_text_emails_to_the_list

I use GPG/INLINE, because some mailing list programs modify the headers
of messages and this way make signature.asc files (PGP/MIME)
unverifiable. Please remove lines about beginning and ending GPG
signature blocks in your replies to messages, which are sent by me.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=vX95
-----END PGP SIGNATURE-----

More information about the ubuntu-users mailing list