Bug#486408: spamassassin: sa-updade key is not cross-certified
Package: spamassassin Version: 3.2.4-2 Followup-For: Bug #486408 Using sa-update -D, we clearly see the problem: gpg refuse to certify the downloaded file because the used key is not cross-certified. The correct fix is to ask upstream to cross-certify its key (by pointing them to http://www.gnupg.org/faq/subkey-cross-certify.html ) A workaround I used is to add --no-require-cross-certification in the options passed to gpg in /usr/bin/sa-update (near line 634) Best regards, Vincent -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (990, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.26-rc5-686 (SMP w/1 CPU core) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages spamassassin depends on: ii libdigest-sha1-perl 2.11-2+b1 NIST SHA-1 message digest algorith ii libhtml-parser-perl 3.56-1+b1 A collection of modules that parse ii libnet-dns-perl 0.63-1+b1 Perform DNS queries from a Perl sc ii libsocket6-perl 0.20-1 Perl extensions for IPv6 ii libsys-hostname-long-perl 1.4-2 Figure out the long (fully-qualifi ii libwww-perl 5.812-1WWW client/server library for Perl ii perl 5.10.0-10 Larry Wall's Practical Extraction ii perl-modules [libarchive-tar- 5.10.0-10 Core Perl modules Versions of packages spamassassin recommends: ii gcc 4:4.3.0-8 The GNU C compiler ii gnupg 1.4.9-2GNU privacy guard - a free PGP rep ii libc6-dev 2.7-12 GNU C Library: Development Librari ii libmail-spf-perl 2.005-1Perl implementation of Sender Poli ii libsys-syslog-perl0.24-1+b1 Perl interface to the UNIX syslog( ii make 3.81-5 The GNU version of the make util ii re2c 0.13.3-1 tool for generating fast C-based r ii spamc 3.2.4-2Client for SpamAssassin spam filte -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#486408: spamassassin: sa-updade key is not cross-certified
Hi, Vincent Danjean wrote: Package: spamassassin Version: 3.2.4-2 Followup-For: Bug #486408 Using sa-update -D, we clearly see the problem: gpg refuse to certify the downloaded file because the used key is not cross-certified. The correct fix is to ask upstream to cross-certify its key (by pointing them to http://www.gnupg.org/faq/subkey-cross-certify.html ) Upstream have already done this, as per the fragment from the 3.2.5 changelog I pasted in http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=486408#10 Regards, Adam -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#486408: spamassassin: sa-updade key is not cross-certified
Hi, Adam D. Barratt wrote: Vincent Danjean wrote: Package: spamassassin Version: 3.2.4-2 Followup-For: Bug #486408 Using sa-update -D, we clearly see the problem: gpg refuse to certify the downloaded file because the used key is not cross-certified. The correct fix is to ask upstream to cross-certify its key (by pointing them to http://www.gnupg.org/faq/subkey-cross-certify.html ) Upstream have already done this, as per the fragment from the 3.2.5 changelog I pasted in http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=486408#10 I do not know how recent this is. But before sending my report, I manually download the tar.gz, the tar.gz.asc and ask gpg to get the key from a public keyserver (keys.gnupg.net in my case). So, 2 hours ago, their cross certified key were not available on this public key server yet. Looking at the previous answers, I download the new key from http://wiki.apache.org/spamassassin/SaUpdateKeyNotCrossCertified and I just uploaded it to keys.gnupg.net. Best regards, Vincent PS: I just discovered that you already answer to this bug before my message. When reportbug show you a bug, it only show you the first report :-( I will perhaps send a wishbug to reportbug if I find some time. -- Vincent Danjean GPG key ID 0x9D025E87 [EMAIL PROTECTED] GPG key fingerprint: FC95 08A6 854D DB48 4B9A 8A94 0BF7 7867 9D02 5E87 Unofficial pacakges: http://www-id.imag.fr/~danjean/deb.html#package APT repo: deb http://perso.debian.org/~vdanjean/debian unstable main -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
