[tor-relays] Debian is not allowing tor to update despite it being listed as a trusted respritory
Keifer Bly
keifer.bly at gmail.com
Sat May 7 16:54:21 UTC 2022
I am running as the root user.
--Keifer
On Sat, May 7, 2022, 10:50 AM Keifer Bly <keifer.bly at gmail.com> wrote:
> Ok will try these things. Does that it's an ovh debain have anything to do
> with it? Hosted by them and they may frown on tor.
>
> --Keifer
>
> On Thu, May 5, 2022, 8:41 AM ben <ben at bentasker.co.uk> wrote:
>
>> > Simply displays a message "no valid openpgp data found". My sources file
>>
>> You'll see this because your system doesn't trust the cert chain.
>>
>> You're not seeing a certificate warning because you've got output
>> suppressed (the -q in wget's arguments)
>>
>> If you run
>>
>> wget
>> https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88
>> 6DDD89.asc
>>
>> I suspect you'll see the certificate warning.
>>
>> You need to fix that before anything suggested here is going to work - if
>> the cert chain isn't trusted then apt isn't going to access the
>> repository's indexes, and so won't even see what packages are there, much
>> less install them.
>>
>> As apt didn't grab an updated version for you (which may be due to other
>> repo misconfigurations) you probably want to grab and install the cert
>> manually
>>
>> # Verify that this gives a cert warning
>> curl https://deb.torproject.org/torproject.org/
>>
>> curl -k --output "/tmp/ISRG_Root_X1.crt" "
>> https://letsencrypt.org/certs/isrgrootx1.pem.txt"
>> sudo mv /tmp/ISRG_Root_X1.crt /usr/local/share/ca-certificates/
>> sudo update-ca-certificates
>>
>> # Now try again
>> curl https://deb.torproject.org/torproject.org/
>>
>> If that final curl now works, run apt-get update and you should find apt
>> no longer complains about the tor repo
>>
>>
>> --
>> Ben Tasker
>> https://www.bentasker.co.uk
>>
>> ---- On Thu, 05 May 2022 13:21:22 +0100 * <lists at for-privacy.net
>> <lists at for-privacy.net>>* wrote ----
>>
>> On Thursday, May 5, 2022 5:17:23 AM CEST Keifer Bly wrote:
>> > Thank you. But running wget -qO-
>> >
>> https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8CBC9E88
>> > 6DDD89.asc
>> >
>> > gpg --dearmor | tee /usr/share/keyrings/tor-archive-keyring.gpg
>> >/dev/null
>>
>> Maybe copy paste error. It must be one line and you must be root or type
>> 'sudo' in front of it. Maybe you can better copy from here:
>>
>> 3. Then add the gpg key ...
>> https://support.torproject.org/apt/
>>
>> > Simply displays a message "no valid openpgp data found". My sources
>> file
>>
>> If this message appears again, install gpg:
>> sudo apt update && apt -y install gnupg
>>
>> --
>> ╰_╯ Ciao Marco!
>>
>> Debian GNU/Linux
>>
>> It's free software and it gives you
>> freedom!_______________________________________________
>> tor-relays mailing list
>> tor-relays at lists.torproject.org
>> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
>>
>>
>>
>> _______________________________________________
>> tor-relays mailing list
>> tor-relays at lists.torproject.org
>> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20220507/30928f88/attachment-0001.htm>
More information about the tor-relays
mailing list