[tor-relays] Debian is not allowing tor to update despite it being listed as a trusted respritory
ben
ben at bentasker.co.uk
Thu May 5 13:09:07 UTC 2022
> Simply displays a message "no valid openpgp data found". My sources file
You'll see this because your system doesn't trust the cert chain.
You're not seeing a certificate warning because you've got output suppressed (the -q in wget's arguments)
If you run
wget https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89.asc
I suspect you'll see the certificate warning.
You need to fix that before anything suggested here is going to work - if the cert chain isn't trusted then apt isn't going to access the repository's indexes, and so won't even see what packages are there, much less install them.
As apt didn't grab an updated version for you (which may be due to other repo misconfigurations) you probably want to grab and install the cert manually
# Verify that this gives a cert warning
curl https://deb.torproject.org/torproject.org/
curl -k --output "/tmp/ISRG_Root_X1.crt" "https://letsencrypt.org/certs/isrgrootx1.pem.txt"
sudo mv /tmp/ISRG_Root_X1.crt /usr/local/share/ca-certificates/
sudo update-ca-certificates
# Now try again
curl https://deb.torproject.org/torproject.org/
If that final curl now works, run apt-get update and you should find apt no longer complains about the tor repo
--
Ben Tasker
https://www.bentasker.co.uk
---- On Thu, 05 May 2022 13:21:22 +0100 <lists at for-privacy.net> wrote ----
On Thursday, May 5, 2022 5:17:23 AM CEST Keifer Bly wrote:
> Thank you. But running wget -qO-
> https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88
> 6DDD89.asc
>
> gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg >/dev/null
Maybe copy paste error. It must be one line and you must be root or type
'sudo' in front of it. Maybe you can better copy from here:
3. Then add the gpg key ...
https://support.torproject.org/apt/
> Simply displays a message "no valid openpgp data found". My sources file
If this message appears again, install gpg:
sudo apt update && apt -y install gnupg
--
╰_╯ Ciao Marco!
Debian GNU/Linux
It's free software and it gives you freedom!_______________________________________________
tor-relays mailing list
mailto:tor-relays at lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20220505/d33c237e/attachment.htm>
More information about the tor-relays
mailing list