sejobu...@bitmessage.de wrote: > how-to setting gpg keyserver & source-list in 443-https > > - gpg (2.1.18) was installed by default without .conf & .dirmngr > i followed this how-to but it does not work. > https://sks-keyservers.net/overview-of-pools.php > hkps.pool.sks-keyservers.net > This is a pool containing only servers available using hkps. > > > - the sources-list (stable 9.3) was installed by default without https. > installing apt-transport-http should solve it. > https://packages.debian.org/stretch/apt-transport-https > If you specify https:// URLs in /etc/apt/sources.list and > /etc/apt/sources.list.d/*, then APT will use HTTPS. > > > but it does not work ... > gpg is still set in hkp & the sources-list are downloaded in http. > do you know an updated how-to or the reason why it does not work using > 443/https ?
So gpg is working for you? The source lists have nothing to do with gpg. The signing keys are verified via gpg and you have to download the signing keys - there is instruction in each release how to do this. The question was already ask and it was explained why it is safe to download the list(s) via http regards
