[pkg-gnupg-maint] Convenient access to Debian keyrings
Sean Whitton
spwhitton at spwhitton.name
Sun Apr 2 21:06:54 UTC 2017
Hello,
On Sun, Apr 02, 2017 at 07:52:00AM +0300, Teemu Likonen wrote:
> Perhaps --primary-keyring will help because it marks one keyring for use
> with key-importing commands. I haven't tried it but it would seem that
> all other keyrings are then read-only.
Thanks for this reply. I tried
keyring /usr/share/keyrings/debian-archive-keyring.gpg
keyring /usr/share/keyrings/debian-keyring.gpg
keyring /usr/share/keyrings/debian-maintainers.gpg
keyring /usr/share/keyrings/debian-nonupload.gpg
keyring /usr/share/keyrings/debian-role-keys.gpg
primary-keyring ~/.gnupg/pubring.kbx
But then I get errors like this:
gpg: keyblock resource '/home/spwhitton/.gnupg/pubring.kbx': File exists
which I don't understand.
On Sun, Apr 02, 2017 at 01:06:29AM +0200, gregor herrmann wrote:
> I'm using the keyrings from keyring.debian.org instead of the
> packaged ones. That way they are up to date and I don't have the
> write errors:
Good point that this avoids the write errors. The problem is that
you're going to need to keep the keys of all keyring-maint members
updated out-of-band, in order to verify sha256sums.txt, but effortlessly
keeping track of DD keys was the whole point of all this.
--
Sean Whitton
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnupg-maint/attachments/20170402/d7acdada/attachment.sig>
More information about the pkg-gnupg-maint
mailing list