[DRBD-user] Proxmox repo release.gpg expired

Christoph Lechleitner christoph.lechleitner at iteg.at
Thu Feb 8 10:06:00 CET 2018


Am 08.02.18 um 09:38 schrieb Yannis Milios:
> Can you please renew proxmox repo Release.gpg file ?
> 
> Thanks
> 
> W: An error occurred during the signature verification. The repository
> is not updated and the previous index files will be used. GPG error:
> http://packages.linbit.com/proxmox proxmox-5 Release: The following
> signatures were invalid: EXPKEYSIG 53B3B037282B6E23 LINBIT Package and
> Repository Signing Key (2017)
> W: Failed to fetch
> http://packages.linbit.com/proxmox/dists/proxmox-5/Release.gpg  The
> following signatures were invalid: EXPKEYSIG 53B3B037282B6E23 LINBIT
> Package and Repository Signing Key (2017)
> W: Some index files failed to download. They have been ignored, or old
> ones used instead.

Just in case this might help:

Debian Stretch introduced 2 new requirements for signing keys and
signatures:

1. The GPG keys need to bei 2048 bit long. Longer probably OK too.

2. SHA1 signatures are not accepted any more, the signatures need to be
done using at least SHA256 now. For legacy GnuPG setups this can be
enforced by adding a line
  digest-algo sha256
to gpg.conf (and re-signing everything).

Regards,

Christoph


More information about the drbd-user mailing list