:: [DNG] New signing key needed?
Inizio della pagina
Questo messaggio è parte di questo thread:
Mil thread completo ordinato per data
M 
MMark Hindley at ->
Delete this message
Reply to this message
Autore: Martin Steigerwald
Data:  
To: dng
Oggetto: [DNG] New signing key needed?
Hi

In Devuan Ceres I keep getting a warning about policy rejecting signature
within a year which I got explained by Apt by using "--audit": 

% LANG=C apt update --audit
Hit:1 http://deb.devuan.org/merged ceres InRelease
All packages are up to date.    
Warning: http://deb.devuan.org/merged/dists/ceres/InRelease: Policy will reject signature within a year, see --audit for details
Audit: http://deb.devuan.org/merged/dists/ceres/InRelease: Sub-process /usr/bin/sqv returned an error code (1), error message is:
   Signing key on 72E3CB773315DFA2E464743D94532124541922FB is not bound:
              No binding signature at time 2025-05-25T14:45:30Z
     because: Policy rejected non-revocation signature (PositiveCertification) requiring second pre-image resistance
     because: SHA1 is not considered secure since 2026-02-01T00:00:00Z


So does that mean a new signing key is needed?

I am willing to report a bug, but please advise on which package.

Thanks,
--
Martin


Questo messaggio è stato inviato alle seguenti mailing lists:
dng
Informazioni sulla Mailing List | Messaggi correlati		<-Re: [DNG] Footnote about the HP Pavilion a6345f.Re: [DNG] New signing key needed?->

Donate to Dyne.org

dyne.org open discussions
amministrato da dyne.org hackers		Lurker (versione 2.3)