[tor-relays] Archive key from deb.torproject.org was renewed!
boldsuck
lists at for-privacy.net
Tue Jul 16 13:47:15 UTC 2024
On Dienstag, 16. Juli 2024 14:15:01 CEST Toralf Förster via tor-relays wrote:
> On 7/16/24 14:03, boldsuck wrote:
> > wget
> > -qO-https://deb.torproject.org/torproject.org/A3C4F0F979CAA22CDBA8F512EE8
> > CBC9E886DDD89.asc | gpg --dearmor | tee
> > /usr/share/keyrings/tor-archive-keyring.gpg >/dev/null
> Is the name important?
>
> I'm asking b/c Ansible [1] seems to use "deb.torproject.org-keyring.gpg"
> as the file name.
>
>
> [1]
> https://github.com/toralf/tor-relays/blob/main/playbooks/roles/setup_tor/tas
> ks/tor-debian.yaml#L4 --
> Toralf
There are 2 keys. The key for the Repository must be added manually or per
ansible playbook role.
tor-archive-keyring.gpg =
https://deb.torproject.org/torproject.org/
A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89.asc
apt update && apt install tor deb.torproject.org-keyring
Package deb.torproject.org-keyring installs Release key in:
/etc/apt/trusted.gpg.d/deb.torproject.org-keyring.gpg
/usr/share/keyrings/deb.torproject.org-keyring.gpg
It could be that Peter has the "release key" and extended it.
And the FTP owner has the “repository key”.
--
╰_╯ Ciao Marco!
Debian GNU/Linux
It's free software and it gives you freedom!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 3872 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20240716/05dd0888/attachment.sig>
More information about the tor-relays
mailing list