On Fri, Sep 14, 2012 at 11:26:42AM +0200, Andreas Beckmann wrote: > I just started running debsums during my piuparts tests to catch > packages that modify conffiles (or any other shipped files), see #687538 > > A big hitter is debian-archive-keyring because > /usr/share/keyrings/debian-archive-removed-keys.gpg ends up modified > after a squeeze->wheezy upgrade (but is fine after a fresh wheezy > installation)
Is it fine after a fresh squeeze installation? The only script that touches that keyring (and I see the same as you on squeeze→wheezy) is apt-key. And only if being called as «apt-key update». But I don't see how the read-only access would modify the keyring and a subsequent «apt-key update» call with wheezy's apt does not touch it. Maybe gpg does strange things. Copying deity@. Kind regards Philipp Kern -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org