How to resolve "Key is stored in legacy trusted.gpg keyring" and migrate to DEB822 .sources format in Ubuntu 24.04/26.04? #apt #updates #2404 #repository #gnupg
Ever since upgrading to the latest LTS, I am getting the following warning every time I run sudo apt update: W: http://ppa.launchpad.net/.../ubuntu/dists/noble/InRelease: Key is stored in legacy tr...
⏰ Letzter Aufruf! Für die Keysigning-Party auf den Chemnitzer Linux-Tagen (#CLT2026). ich hätte gern noch mehr Teilnehmer. Lasst uns gemeinsam das Web of Trust stärken! 🔐
📅 So, 29.03., 11 Uhr, Raum K2
⚠️ Anmeldeschluss ist HEUTE (20.03.) 23:59 Uhr!
https://chemnitzer.linux-tage.de/2026/de/addons/pgp
Ich freue mich auf euch!
#GnuPG #Linux #WebOfTrust @clt_news
Anyone got a working #GPG #git commit signing example for a #macos using #homemanager #nixdarwin
Currently getting the following error:
error: gpg failed to sign the data:
gpg: skipped "$USER": No secret key
The https://freepg.org/ project maintains patches against #GnuPG with the goal of closer adherence to the IETF #OpenPGP spec.
One currently open question is if/how draft-ietf-openpgp-pqc support could be realistically added to #FreePG
I've started https://codeberg.org/freepg/freepg-draft-ietf-openpgp-pqc first of all as a notes-to-self repo for a (presumably very slow and long-term) side quest to explore this problem.
Specifically, the goal would be adding support for v4 ML-KEM-768+X25519 subkeys.
https://www.ietf.org/archive/id/draft-ietf-openpgp-pqc-17.html#ecc-mlkem
Tragt euch auf der #keysigning #party des #clt2026 ein
Jeder #gnupg #pgp #openpgp Schlüssel der teilnimmt stärkt das Web of Trust #WoT
#GnuPG 2.5.18-freepg has been released.
It contains all the latest bug fixes from upstream GnuPG, plus the usual FreePG patches.
This release also contains fixes for additional gpg.fail issues that remain unfixed upstream:
* skip trust packets during import-restore (https://gpg.fail/trust)
* compat ignore truncated line (https://gpg.fail/formfeed)
* fail on unprintable armor headers (https://gpg.fail/nullbyte https://gpg.fail/notdash)
Note that the FreePG project considers the 2.5.x branch to be experimental, and does not enable non-standard OpenPGP algorithms unless “--compliance=gnupg” is explicitly set.
https://gitlab.com/freepg/gnupg/-/releases/gnupg-2.5.18-freepg
I have already modeled a #GnuPG key signing as DFD and SEQ as well as the classic "let's put an ISO image alongside a signature" on a WWW server. as DFD with trust boarders, attack path and STRIDE categories.
I have also modeled some of the patterns from »Modeling Trust in Enterprise Architecture: A Pattern Language for ArchiMate« in #PlantUML
AskUbuntu
Frank
Backendzeit
tuxiqae
Heiko
0xKaishakunin
FreePG Project
🅴🆁🆄🅰 🇷🇺timedatectl status показывает нормальное время на машине. Пришлось, в итоге, удалить связку GnuPG-ключей, пересоздать заново с настройками доверия. Не прямо сходу, конечно же, а сперва убедившись, что текущая закораптилась.$: pacman-key --list-keys Вася Пупкин
...
pub ed25519 2021-08-11 [SC] [expires: 2026-12-31]
<KEYID>
uid [ marginal ] Вася Пупкин <васян@кудыкины.горы>
sub rsa4096 2021-08-11 [S] [expires: 2026-12-31]
sub cv25519 2021-08-11 [E] [expires: 2026-12-31]$: sudo pacman-key --edit-key Вася Пупкин
gpg> trust
1 = I don't know or won't say
2 = I do NOT trust
3 = I trust marginally
4 = I trust fully
5 = I trust ultimately
m = back to the main menu
Your decision? 4 --list-keys. Если связка ключей (keyring) закорапчена, тогда так и останется «full». $: sudo rm -r /etc/pacman.d/gnupg
$: sudo pacman -Sy gnupg archlinux-keyring
$: sudo pacman -Sy имя-дериватива-keyring
$: sudo pacman-key --init
$: sudo pacman-key --populate archlinux имя-дериватива/etc/pacman.d/gnupg/gpg.conf прежде чем делать вещи, сродни:$: sudo pacman-key --refresh-keys$: sudo pacman -Sccyay, а не pacman.Transitioning to services that respect my data. Some self hosting/managed hosting and some use of services I trust.
Bye bye #instagram etc. — hello #pixelfed
Bye bye #tiktok etc. — hello #loops
Bye bye #facebook #X #Twitter #Threads #BlueSky etc. — hello #mastodon
Bye bye #Messenger #WhatsApp #Discord etc. — hello #signal #xmpp #matrix
And #GnuPG #OpenPGP #PGP … gotta start using that again. The future is looking 🔐👀.
More to come! o/
Bendik