Badsig 40976eaf437d05b5

[Wim Sturkenboom]

W: GPG error: http://archive.ubuntu.com dapper-updates Release: The following signatures were invalid: BADSIG 40976EAF437D05B5 Ubuntu Archive Automatic Signing Key <ftpmaster@ubuntu.com>

Got notified that there were 2 updates (ssh related as far as I remember). After the install, I ran a check for updates on the system and got above message.

Question is what causes this.

After writing this, I tried the solution in http://ubuntuforums.org/showthread.php?t=179303 and it still gives the problem.

So second question is now how to solve it.

[Wim Sturkenboom]

Time for a little kick.

[bctechnzl]

Slightly bigger kick!!!

W: A error occurred during the signature verification. The repository is not updated and the previous index files will be used.GPG error: http://security.ubuntu.com intrepid-security Release: The following signatures were invalid: BADSIG 40976EAF437D05B5 Ubuntu Archive Automatic Signing Key <ftpmaster@ubuntu.com>

W: Failed to fetch http://security.ubuntu.com/ubuntu/di...curity/Release

W: Some index files failed to download, they have been ignored, or old ones used instead.

Do we have to download new signatures, and is there a process for this?

[Wim Sturkenboom]

If I remember corrrectly, this issue disappeared after the upgrade from Dapper to Hardy that I did in december 2008. And a while ago I noticed that it was back.

First message

Apt Authentication issue

Problem during package list update. The package list update failed with a authentication failure. This usually happens behind a network proxy server. Please try to click on the "Run this action now" button to correct the problem or update the list manually by running Update Manager and clicking on "Check".

During 'run this action now'

W: A error occurred during the signature verification. The repository is not updated and the previous index files will be used.GPG error: http://security.ubuntu.com hardy-security Release: The following signatures were invalid: BADSIG 40976EAF437D05B5 Ubuntu Archive Automatic Signing Key <ftpmaster@ubuntu.com>

W: Failed to fetch http://security.ubuntu.com/ubuntu/di...curity/Release

W: Some index files failed to download, they have been ignored, or old ones used instead.

Anybody ?

[alexfish]

try this

sudo aptitude -o Acquire::http::No-Cache=True -o Acquire::BrokenProxy=true update


then test with

sudo apt-get update

[n_s_simpson]

it worked for me

[Wim Sturkenboom]

The problem has, for now, disappeared without doing anything. Next time it happens, I will test the solution.

For now, I will mark it as solved as it has helped n_s_simpson

[udippel]

try this

sudo aptitude -o Acquire::http::No-Cache=True -o Acquire::BrokenProxy=true update

Alexfish, phantastic!! I have been fiddling with this for ages, read dozens of threads, no solution. Studied 'man aptitude'.
Where did you get this from??

And, as a general question, should this eventually been added to the user guidance like 'fix-missing' or similar? What I see here, are two valid, and often needed options; especially in the enterprise, when web-caches and dumb proxies mess up:
- an option to not use the cache
- an option to work around broken proxies
Are there any incarnations as more simple options to be added to apt-get? It might be easier, to suggest the user to type something like
sudo apt-get --no-cache --fix-proxy update?

What do you think?

Uwe

[naphtha]

Had the same problem.
I my case it was something fishy in the old apt lists.

Solved by deleting and reloading:

Code:

sudo rm -r /var/lib/apt/lists
sudo mkdir -p /var/lib/apt/lists/partial
sudo aptitude update

[CoolJohnB]

Had the same problem.
I my case it was something fishy in the old apt lists.

Solved by deleting and reloading:

Code:

sudo rm -r /var/lib/apt/lists
sudo mkdir -p /var/lib/apt/lists/partial
sudo aptitude update

This one worked for me too thank you very much