Your message dated Mon, 04 May 2026 07:18:57 +0000
with message-id <[email protected]>
and subject line Bug#1131111: Removed package(s) from unstable
has caused the Debian Bug report #806404,
regarding cpm: Refuses to decrypt password database unless I trust the signer
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
806404: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=806404
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: cpm
Version: 0.32-1
Severity: important
When I try to access the password database for a association where I am
a member and which is encrypted using one of my keys, I get this error:
GpgMe verify error
Database signed with keys of unknown validity. You must trust the key
with fingerprint <key-fingerprint> before proceeding
The key with the given fingerprint (replaced with <key-fingerprint>
above) is one I have not signed, but it is signed by a key I have
signed.
It seem strange to me that cpm refuses to show me passwords I am able to
decrypt, just because I do not trust the key used to sign the database.
What exactly is the problem here? Do I really need to trust everyone I
get passwords from according to cpm?
Is there a way to get cpm to show me the passwords anyway?
--
Happy hacking
Petter Reinholdtsen
--- End Message ---
--- Begin Message ---
Version: 0.32-1.6+rm
Dear submitter,
as the package cpm has just been removed from the Debian archive
unstable we hereby close the associated bug reports. We are sorry
that we couldn't deal with your issue properly.
For details on the removal, please see https://bugs.debian.org/1131111
The version of this package that was in Debian prior to this removal
can still be found using https://snapshot.debian.org/.
Please note that the changes have been done on the master archive and
will not propagate to any mirrors until the next dinstall run at the
earliest.
This message was generated automatically; if you believe that there is
a problem with it please contact the archive administrators by mailing
[email protected].
Debian distribution maintenance software
pp.
Thorsten Alteholz (the ftpmaster behind the curtain)
--- End Message ---
