I got the following error from Synaptic after clicking "reload" (similar to "apt-get update")
From a bit of research, I understand that I need to download and import a new signature key in order to verify the signature of this archive.
W: A error occurred during the signature verification. The repository is not updated and the previous index files will be used.GPG error: http://us.archive.ubuntu.com hardy-updates Release: The following signatures were invalid: BADSIG 40976EAF437D05B5 Ubuntu Archive Automatic Signing Key <email@example.com>
W: Failed to fetch http://us.archive.ubuntu.com/ubuntu/dists/hardy-updates/Release
W: Failed to fetch http://security.ubuntu.com/ubuntu/dists/hardy-security/universe/binary-i386/Packages.bz2 Hash Sum mismatch
W: Some index files failed to download, they have been ignored, or old ones used instead.
But how do I do this?
Is there a keyring package I can install with apt or synaptic?
Or, maybe I must use gpg --recv-keys to retrieve a key. If so, what is my keyserver?
Any other suggestions?