Since APT 2.4, /etc/apt/keyrings is provided as the recommended location for keys not managed by packages. Recommended: Instead of placing keys into the /etc/apt/ directory, you can place them anywhere on your filesystem by using the Signed-By option in your sources.list and pointing to the filename of the key.
The binary OpenPGP format works for all apt versions, while the ASCII armored format works for apt version >= 1.4. Make sure to use the "asc" extension for ASCII armored keys and the "gpg" extension for the binary OpenPGP format (also known as "GPG key public ring"). Wget -qO- | sudo tee /etc/apt//myrepo.asc Then you can directly replace this with (though note the recommendation below): If your existing use of apt-key add looks like this: This section shows how to replace the existing use of apt-key. Our latest Linux articles Fixing the apt-key deprecation errorįurther on in the man page, there's the deprecation section mentioned in the warning from apt update: DEPRECATIONĮxcept for using apt-key del in maintainer scripts, the use of apt-key is deprecated. Last available in "Debian 11 and Ubuntu 22.04" is pretty much right now for me. If such usage of apt-key is desired, the additional installation of the GNU Privacy Guard suite (packaged in gnupg) is required.Īpt-key(8) will last be available in Debian 11 and Ubuntu 22.04. Use of apt-key is deprecated, except for the use of apt-key del in maintainer scripts to remove existing keys from the main keyring. Packages which have been authenticated using these keys are considered trusted.
Near the beginning of the man page: apt-key is used to manage the list of keys used by apt to authenticate packages. Taking my prompt from the warning message, I ran man apt-key at the command line, which provided several interesting bits of information. It turns out that I have older configurations for some repositories, artifacts of installation processes from "back in the day," that needed adjustment. Based on what I found, I thought my experience would be worth sharing. True, it's just a warning, but still there's that scary word, deprecation, which usually means it's going away soon. After issuing the update command, something didn't seem quite right I was seeing messages along the lines of: W: : Key is stored in legacy trusted.gpg keyring (/etc/apt/trusted.gpg), see the DEPRECATION section in apt-key(8) for details. This morning, after returning home from a mini vacation, I decided to run apt update and apt upgrade from the command line just to see whether there had been any updates while I was offline.
0 kommentar(er)
