Hi Frank!
Frank Küster wrote:
> Nikolaus Schulz <[EMAIL PROTECTED]> wrote:
>
> > Package: debian-keyring
> > Version: 2005.05.28
> > Severity: normal
> >
> > Hi,
> >
> > as suggested in the debian-keyring README, I've added the Debian keyrings
> > directly:
> >
> > ,----[ ~/.gnupg/gpg.conf ]
> > | keyring /usr/share/keyrings/debian-keyring.gpg
> > | keyring /usr/share/keyrings/debian-keyring.pgp
> > | keyserver wwwkeys.de.pgp.net
> > `----
> >
> > Here's a typescript of what happens importing a key:
> >
> > penelope[nikolaus]$ gpg --recv-keys XXXXXXXX
> > gpg: requesting key XXXXXXXX from hkp server wwwkeys.de.pgp.net
> > gpg: key XXXXXXXX: public key "<id>" imported
> > gpg: can't create `/usr/share/keyrings/debian-keyring.gpg.tmp': Read-only
> > file system
>
> Hi Nikolaus,
>
> I think this is not a bug. You just missed the next paragraph in the
> README, telling you
>
> ,----
> | GPG cannot modify keys in these root-owned files. In order to edit or
> | sign keys in the Debian keyring you will first need to import them to
> | your personal keyring. If ~/.gnupg/gpg.conf lists the debian-keyring
> | files, keys already in the Debian keyring will not be imported to your
> | personal keyring. You can use "gpg --no-options --import" to force
> | GPG to ignore gpg.conf and import keys to your personal keyring only.
> `----
Hmm. I'm not very fluid with gnupg, but first, the README section you're
citing starts with the clear statement:
,----[ README ]
| Using the debian-keyring with gpg
| ---------------------------------
|
| Add these lines to the bottom of your ~/.gnupg/gpg.conf[1] file:
|
| keyring /usr/share/keyrings/debian-keyring.gpg
| keyring /usr/share/keyrings/debian-keyring.pgp
`----
And this _does not work_.
> Should we close this bug?
Second, I may be lacking the necessary insight how gnupg works, but
IIRC, when I included the given "keyring" lines in ~/gpg.conf, it was
not the procedure of "editing or signing keys in the Debian keyring"
that failed, but the procedure of importing (any) keys in my private
keyring. This is different from what the paragraph you cited speaks
about.
HAND,
Nikolaus
