@bjornmagnus
Have you tested my other debugging approach (making apt-get NOT change user)
1. running the apt-key commands from the sandbox ("_apt") user (switching users
outside of apt-get)
$ sudo -u _apt apt-key --foo --bar baz
2. deleting the _apt user (making apt fall back to not switching us
@janl
in my case, apt was unable to use the _apt user due to misconfiguration. it did
report (some) failure, which to ignore would be my choice and responsibility
then - there is no way of making apt resolve the _apt user issue in a way that
would lead to consistently increasing system security.
underlying bug was not apt-related, but could be worked around by
deleting the _apt user - apt will then do exactly the same thing as I
successfully tested on console.
to spare future users some pain in debugging such, I recommend
- adding getpwuid(geteuid()) to the relevant error and debug messag
Public bug reported:
Apt can fail to verify a Release file which verifies just fine when
calling apt-key directly.
Please advise how i can supply further debug information to help fix the
underlying bug.
Expected:
apt-get should only report that a repository is not signed when no such
signature
4 matches
Mail list logo
