Mailinglist Archive: opensuse-buildservice (327 mails)

< Previous Next >
Re: [opensuse-buildservice] Expired OBS Keys?
  • From: Andrew Joakimsen <joakimsen@xxxxxxxxx>
  • Date: Thu, 21 Apr 2011 13:41:22 -0400
  • Message-id: <BANLkTikU9o1XeA9pMdA3mvTsKjUo0=nJtQ@mail.gmail.com>
On Wed, Apr 20, 2011 at 15:10, King Thorin <kingthorin@xxxxxxxxxxx> wrote:

It seems the OBS Security key (keyid 79EAFD54) on keys.gnupg.net has expired
(2011-Apr-2). Would it be possible for someone to update it?

I know an updated key has been generated (which expires 2013) as it can be
found here:
http://download.opensuse.org/repositories/security:/OpenVAS:/STABLE:/v4/xUbuntu_10.04/Release.key

Further details can be found via:
http://lists.wald.intevation.org/pipermail/openvas-distro/2011-April/thread.html

Basically the issue came to light when following instructions:
http://www.openvas.org/install-packages.html#openvas4_ubuntu_obs
                                         --
To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-buildservice+help@xxxxxxxxxxxx



Just abolish the keys. When I am prompted to accept or reject I always
select accept always without any thought or verification. For all I
know I am accepting a malicious key, and with the way that the
openSUSE mirrors are handled, that wouldn't be impossible.

--
Med Vennlig Hilsen,

A. Helge Joakimsen
--
To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-buildservice+help@xxxxxxxxxxxx

< Previous Next >
References