mika

apt, SHA-1 keys + 2026-02-01:

https://michael-prokop.at/blog/2026/01/31/apt-sha-1-keys-2026-02-01/

You heard it here first 🤡

mikas blog » Blog Archive » apt, SHA-1 keys + 2026-02-01

Jan 31 at 1:59pmWeb
Show threadmikaFeb 1
"dgit: autopkgtest regression: SHA1 is not considered secure since 2026-02-01T00:00:00Z" -- https://bugs.debian.org/1126793
🤡 -IT!
#1126793 - dgit: autopkgtest regression: SHA1 is not considered secure since 2026-02-01T00:00:00Z - Debian Bug report logs

Show threadKarl Voit  Jan 31

@mikagrml I just searched through the web page of grml in order to fix the missing key on my side:

Get:1 http://deb.grml.org grml-stable InRelease [7,782 B]
Err:1 http://deb.grml.org grml-stable InRelease
Sub-process /usr/bin/sqv returned an error code (1), error message is: Missing key DE68E32DCAFFBBBB66D5459CEE1291F5F9382900, which is needed to verify signature.

I wasn't able to find something related to "DE68E32DCAFFBBBB66D5459CEE1291F5F9382900".

What is my error/mistake here?

Index of /

Show threadmikaJan 31
@publicvoit see https://grml.org/files/
Files | Grml.org

Show threadKarl Voit  Jan 31

@mikagrml Thanks. I somehow was missing the key package 🤷😞

Maybe I lost it during Debian upgrade.

Show threadCyril BruleboisFeb 1

@mikagrml Yes, sorry for sticking to mentioning the proper solution. 🙃

https://mamot.fr/@CyrilBrulebois/115017198081588568

Show threadCyril BruleboisFeb 1
@mikagrml And yes, very much “faketime FTW”. DeLorean be useful!
Show threadguntbertFeb 2
@mikagrml thankfully there is an RSS feed on your site 👍