On Sat, Jan 28, 2006 at 11:38:56PM -0500, Joey Hess wrote: > Joey Hess wrote: > > Ross Boylan wrote: > > > Starting last night I see > > > W: GPG error: http://localhost sarge/updates Release: The following > > > signatures were invalid: BADSIG F1D53D8C4F368D5D Debian Archive Automatic > > > Signing Key (2005) <[EMAIL PROTECTED]> > > > > > > Anyone know what's up? I don't see messages about this latest > > > occurrence. > > > > The sarge security updates repository has a still valid signature from > > the 2005 key. > > > > A broken cache could certianly cause your problem. > > I managed to reproduce your problem. security.debian.org is on round > robin dns, and one of the mirrors is not updating. If apt downloads some > (but not all) files from this mirror, it will detect a bad signature. > Thanks for tracking that down. Is there a work-around? Ross
-- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
