[tor-relays] Sig ver error
Hi all, I'm getting a signature verification error: $ sudo apt-get update Hit:1 http://mirrordirector.raspbian.org/raspbian stretch InRelease Hit:2 http://archive.raspberrypi.org/debian jessie InRelease Get:3 https://deb.torproject.org/torproject.org stretch InRelease [3528 B] Err:3 https://deb.torproject.org/torproject.org stretch InRelease The following signatures were invalid: EXPKEYSIG 74A941BA219EC810 deb.torproject.org archive signing key Fetched 3528 B in 3s (998 B/s) Reading package lists... Done W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: https://deb.torproject.org/torproject.org stretch InRelease: The following signatures were invalid: EXPKEYSIG 74A941BA219EC810 deb.torproject.org archive signing key W: Failed to fetch https://deb.torproject.org/torproject.org/dists/stretch/InRelease The following signatures were invalid: EXPKEYSIG 74A941BA219EC810 deb.torproject.org archive signing key W: Some index files failed to download. They have been ignored, or old ones used instead. Any thoughts would be appreciated. thanks, matt ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Sig ver error
Hi Matt. This cmd could help, give it a try sudo apt-key adv --recv-keys --keyserver keys.gnupg.net YOURMISSINGKEY Best regards, volker 😊 Von: tor-relays Im Auftrag von tor Gesendet: Mittwoch, 3. Februar 2021 18:17 An: tor-relays@lists.torproject.org Betreff: [tor-relays] Sig ver error Hi all, I'm getting a signature verification error: $ sudo apt-get update Hit:1 <http://mirrordirector.raspbian.org/raspbian> http://mirrordirector.raspbian.org/raspbian stretch InRelease Hit:2 <http://archive.raspberrypi.org/debian> http://archive.raspberrypi.org/debian jessie InRelease Get:3 <https://deb.torproject.org/torproject.org> https://deb.torproject.org/torproject.org stretch InRelease [3528 B] Err:3 <https://deb.torproject.org/torproject.org> https://deb.torproject.org/torproject.org stretch InRelease The following signatures were invalid: EXPKEYSIG 74A941BA219EC810 <http://deb.torproject.org/> deb.torproject.org archive signing key Fetched 3528 B in 3s (998 B/s) Reading package lists... Done W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: <https://deb.torproject.org/torproject.org> https://deb.torproject.org/torproject.org stretch InRelease: The following signatures were invalid: EXPKEYSIG 74A941BA219EC810 <http://deb.torproject.org/> deb.torproject.org archive signing key W: Failed to fetch <https://deb.torproject.org/torproject.org/dists/stretch/InRelease> https://deb.torproject.org/torproject.org/dists/stretch/InRelease The following signatures were invalid: EXPKEYSIG 74A941BA219EC810 <http://deb.torproject.org/> deb.torproject.org archive signing key W: Some index files failed to download. They have been ignored, or old ones used instead. Any thoughts would be appreciated. thanks, matt ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Sig ver error
On Wed, Feb 03, 2021 at 12:17:11PM -0500, tor wrote: > I'm getting a signature verification error: > > $ sudo apt-get update > > Hit:1 http://mirrordirector.raspbian.org/raspbian stretch InRelease > > Hit:2 http://archive.raspberrypi.org/debian jessie InRelease > > Get:3 https://deb.torproject.org/torproject.org stretch InRelease [3528 B] > > Err:3 https://deb.torproject.org/torproject.org stretch InRelease > > The following signatures were invalid: EXPKEYSIG 74A941BA219EC810 > deb.torproject.org archive signing key Hi Matt, There are two problems here: First is that you need to re-import the deb.torproject.org signing key, because you have an old version of the key which has an expiry date in the past. You can do that by following the instructions on https://support.torproject.org/apt/tor-deb-repo/ But second is that you have distro names like jessie and stretch in your apt sources lines. Those distros are super super old: https://www.debian.org/releases/jessie/ https://www.debian.org/releases/stretch/ So you should make some plans to move to a newer distro like buster. Hope this helps, --Roger ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
[tor-relays] sig ver error and more
Hi All, So everything had been working for over a year. Am currently on tor 4.2.7, stretch. When I went to update, I got: The following signatures were invalid: EXPKEYSIG 74A941BA219EC810 < http://deb.torproject.org/> deb.torproject.org archive signing key My deb.torproject.org--keyring is version 2018.08.06 Is this the latest version? In trying to update deb.torproject.org--keyring, it says I'm on the latest, In trying: sudo apt-key adv --recv-keys --keyserver keys.gnupg.net 74A941BA219EC810 I get: packet too large invalid packet no valid openpgp data found Maybe I used the wrong key in the above command? thoughts? -matt ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays