-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, Jun 20, 2018 at 02:27:24PM +0200, Adam Cecile wrote:
[...] > I still thinks it *sucks* to have no alternative then considering > packages signed by an expired key like unsigned packages.... That was my impression too: there should be a separate option for "yes, I know the key is expired". Perhaps you can bring it up in debian-devel or on the APT mailing list (https://lists.debian.org/deity/), to see if they recommend filing a bug? Cheers - -- tomás -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlsqbecACgkQBcgs9XrR2kYAhQCfVsSG+LOLDTSmGAzcSM71b1td oCkAni9O+K/nltB1KUIshFM/nId2U3p7 =S+Ta -----END PGP SIGNATURE-----
