To answer my own question, it seems apt-get secretly prefers sites which are authenticated, even when disabling authentication as a commandline option.. I came across this as a 'bug' report which apparently hasn't been put through into testing/stable yet. I would call it a bug since it is undocumented and in my case unwanted behaviour when I supply no authentication to apt-get. The solution is therefore to sign your own Release files. 1) gpg --gen-key (no passwd because apt-move has a batch to sign) 2) gpg --export -a PUBKEY | apt-key add - 3) add the key in apt-move.conf
-- Hendrik -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]