PDA

View Full Version : [ubuntu] Adding GPG keys



A_M_S
February 14th, 2010, 10:21 PM
To add a new repo after editing the sources.list we need to add a GPG key. One way of doing it is:

sudo apt-key adv --recv-keys --keyserver keyserver.ubuntu.com 0xfbef0d696de1c72ba5a835fe5a9bf3bb4e5e17b5

The apt-key adv adds the GPG key locally right?

what is the purpose of the "--recv-keys --keyserver keyserver.ubuntu.com 0xfbef0d696de1c72ba5a835fe5a9bf3bb4e5e17b5" ?

Is "0xfbef0d696de1c72ba5a835fe5a9bf3bb4e5e17b5" the GPG key?


tnx.

cariboo
February 15th, 2010, 12:49 AM
To answer your question, yes it is.

A_M_S
February 15th, 2010, 01:57 AM
To answer your question, yes it is.

Thank you for your reply.

But if "0xfbef0d696de1c72ba5a835fe5a9bf3bb4e5e17b5" is the GPG key, why do i have to connect to the keyserver.ubuntu.com?

Why not adding it simply do my system?

tom.swartz07
February 15th, 2010, 05:29 AM
Thank you for your reply.

But if "0xfbef0d696de1c72ba5a835fe5a9bf3bb4e5e17b5" is the GPG key, why do i have to connect to the keyserver.ubuntu.com?

Why not adding it simply do my system?

I may be incorrect in my interpretation of the idea, but it is my understanding that you need to verify the key with the remote server.

Just like having a real key, you need to locate the lock that it works in. Following the same reasoning, the key you have connects to the remote 'lock' repository and then verify that they are a pair.

A_M_S
February 16th, 2010, 01:24 AM
I may be incorrect in my interpretation of the idea, but it is my understanding that you need to verify the key with the remote server.

Just like having a real key, you need to locate the lock that it works in. Following the same reasoning, the key you have connects to the remote 'lock' repository and then verify that they are a pair.

I think you're right.
The following link has more info about apt-key.

https://help.ubuntu.com/community/SecureApt