Problem in PGP signature of a mirror - an administrative problem

Similar Messages

• Can't install anything due to PGP signature problems

  Hello,
  I followed the instructions at https://www.archlinux.org/news/gnupg-21 … n-keyring/ (without installing haveged) and now I can't install any packages anymore.
  root@horus /home/florian # rm -rf /etc/pacman.d/gnupg
  root@horus /home/florian # pacman-key --init
  gpg: /etc/pacman.d/gnupg/trustdb.gpg: trustdb created
  gpg: no ultimately trusted keys found
  gpg: starting migration from earlier GnuPG versions
  gpg: porting secret keys from '/etc/pacman.d/gnupg/secring.gpg' to gpg-agent
  gpg: migration succeeded
  gpg: Generating pacman keyring master key...
  gpg: key EBDCFE13 marked as ultimately trusted
  gpg: directory '/etc/pacman.d/gnupg/openpgp-revocs.d' created
  gpg: Done
  ==> Updating trust database...
  gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model
  gpg: depth: 0 valid: 1 signed: 0 trust: 0-, 0q, 0n, 0m, 0f, 1u
  root@horus /home/florian # pacman -S archlinux-keyring
  warning: archlinux-keyring-20140908-1 is up to date -- reinstalling
  resolving dependencies...
  looking for inter-conflicts...
  Packages (1): archlinux-keyring-20140908-1
  Total Download Size: 0.43 MiB
  Total Installed Size: 0.60 MiB
  Net Upgrade Size: 0.00 MiB
  :: Proceed with installation? [Y/n]
  :: Retrieving packages ...
  archlinux-keyring-20140908-1-any 444.8 KiB 2.09M/s 00:00 [#####################################################################################################] 100%
  (1/1) checking keys in keyring [#####################################################################################################] 100%
  downloading required keys...
  :: Import PGP key 2048R/4AA4767BBC9C4B1D18AE28B77F2D434B9741E8AC, "Pierre Schmitz <[email protected]>", created: 2011-04-10? [Y/n] Y
  (1/1) checking package integrity [#####################################################################################################] 100%
  error: archlinux-keyring: signature from "Pierre Schmitz <[email protected]>" is unknown trust
  :: File /var/cache/pacman/pkg/archlinux-keyring-20140908-1-any.pkg.tar.xz is corrupted (invalid or corrupted package (PGP signature)).
  Do you want to delete it? [Y/n] Y
  error: failed to commit transaction (invalid or corrupted package (PGP signature))
  Errors occurred, no packages were upgraded.
  Any idea?
  Thanks,
  Florian

  Osiris wrote:root@horus /home/florian # pacman -S archlinux-keyring
  That's wrong.
  You need to do this instead:
  # pacman-key --populate archlinux
  https://www.archlinux.org/news/gnupg-21 … n-keyring/

• [SOLVED]linux-headers upgrade fails with PGP signature error

  Whe trying to upgrade the linux kernel using:
  pacman -S linux linux-headers
  it fails with the following error:
  (2/2) checking package integrity                             [#################################] 100%
  error: linux: signature from "Tobias Powalowski <[email protected]>" is unknown trust
  error: linux-headers: signature from "Tobias Powalowski <[email protected]>" is invalid
  error: failed to commit transaction (invalid or corrupted package (PGP signature))
  Errors occurred, no packages were upgraded.
  I have tried deleting /etc/pacman.d/gnupg and the recreating it with
  pacman-key --init
  , I have also run
  pacman -Syy
  to make sure the repository is up to date.  I read the wiki post about time, but my ntp daemon is running, and I have confirmed that my time is exactly right.
  Last edited by MikeDacre (2013-04-01 23:32:27)

  Hi,
  Sorry, but that doesn't help me.  I can't find any reference in that post to this problem.  I get a similar issue when I try to upgrade mysql:
  >> sudo pacman -S mariadb libmariadbclient mariadb-clients 16:06 Mon 04-01-2013
  resolving dependencies...
  looking for inter-conflicts...
  :: libmariadbclient and libmysqlclient are in conflict. Remove libmysqlclient? [y/N] y
  :: mariadb-clients and mysql-clients are in conflict. Remove mysql-clients? [y/N] y
  :: mariadb and mysql are in conflict. Remove mysql? [y/N] y
  Targets (6): libmysqlclient-5.5.30-6 [removal] mysql-5.5.30-6 [removal]
  mysql-clients-5.5.30-6 [removal] libmariadbclient-5.5.30-2 mariadb-5.5.30-2
  mariadb-clients-5.5.30-2
  Total Download Size: 16.85 MiB
  Total Installed Size: 152.41 MiB
  Net Upgrade Size: 28.51 MiB
  Proceed with installation? [Y/n] y
  :: Retrieving packages from extra...
  libmariadbclient-5.5.30-2-x86_64 6.6 MiB 1479K/s 00:05 [#################################] 100%
  mariadb-clients-5.5.30-2-x86_64 871.8 KiB 421K/s 00:02 [#################################] 100%
  mariadb-5.5.30-2-x86_64 9.4 MiB 440K/s 00:22 [#################################] 100%
  (3/3) checking package integrity [#################################] 100%
  error: libmariadbclient: key "BBE43771487328A9" is unknown
  :: Import PGP key , "Bartlomiej Piotrowski <[email protected]>", created 2011-10-10? [Y/n] y
  error: key "Bartlomiej Piotrowski <[email protected]>" could not be imported
  error: mariadb-clients: key "BBE43771487328A9" is unknown
  :: Import PGP key 487328A9, "Bartlomiej Piotrowski <[email protected]>", created 2011-10-10? [Y/n] y
  (3/3) checking package integrity [#################################] 100%
  error: libmariadbclient: signature from "Bartlomiej Piotrowski <[email protected]>" is unknown trust
  error: mariadb-clients: signature from "Bartlomiej Piotrowski <[email protected]>" is unknown trust
  error: mariadb: signature from "Bartlomiej Piotrowski <[email protected]>" is unknown trust
  error: failed to commit transaction (invalid or corrupted package (PGP signature))
  Errors occurred, no packages were upgraded.

• Encrypt External Drive with TrueCrypt / PGP Signature

  I want to use TrueCrypt to encrypt an external drive. I understand the new version of FileVault can do this but I prefer not to upgrade to Lion. I'd rather wait till Mountain Lion comes out later this year.
  For those who have used both...Just wondering how TrueCrypt compares to FileVault in regards to encrypting an external drive.
  Also, I am trying to install or execute the PGP Signature to ensure that the TrueCrypt software that I am downloading from the TrueCrypt's Web site is authentic and has not been hacked.
  How do I run or install it? I double-click on the PGP Signature file, a window pops up and says it cannot find an application to open it. I even tried removing the ".sig" from the end of the file name and it say it cannot open the disk image.
  There are instructions on the TrueCrypt web site for Windows users but none for the Mac users that I can see.

  If you want better, more reliable security on a external drive, you should get a self encrypting external drive, these have a hardware based encryption, either a physical key and/or keypad to enter a password and do all the encryption/decryption on the drive itself.
  No need for software means you can take your data to any secure machine and the computer thinks it just another drive. Software can become unrelaible or glitchy, subjected to updates/tampering. Hardwired requires physical possession of the device.
  Also there are smalller portable USB thumb drives like Iron Key that also self-encrypt and have the advantage of being quickly discarded upon a threat.

• Package is corrupted PGP signature[SOLVED]

  Hello,
  I was trying to update my system with:
  pacman -Syyu
  One package kept coming showing:
  error: archlinux-keyring: signature from "Someone <[email protected]>" is unknown trust
  I attempted:
  pacman-key --refresh-keys
  But this did not help. I then attempted:
  rm -r /etc/pacman.d/gnupg
  pacman-key --init
  pacman -Sc
  pacman -Syyu
  I then added all of the keys when queried to do so. However now I get:
  error: archlinux-keyring: signature from "Pierre Schmitz <[email protected]>" is unknown trust
  :: File /var/cache/pacman/pkg/archlinux-keyring-20140124-1-any.pkg.tar.xz is corrupted (invalid or corrupted package (PGP signature)).
  Do you want to delete it? [Y/n]
  And I believe this is the case for every package...
  How do i resolve this?
  Thanks in advance
  Last edited by 127001 (2014-02-03 15:01:43)

  Please remember to mark the thread as solved https://bbs.archlinux.org/viewtopic.php?id=130309

• Packer install error pgp signature

  I was running AppSet-Qt and in Aur part it said to enable package support you have to install packer.  I tried to install packer with pacman -S but I keep getting errors
  packer-20140817-1-any      9.5 KiB   175K/s 00:00 [#####################] 100%
  (3/3) checking keys in keyring                     [#####################] 100%
  (3/3) checking package integrity                   [#####################] 100%
  error: packer: missing required signature
  :: File /var/cache/pacman/pkg/packer-20140817-1-any.pkg.tar.xz is corrupted (invalid or corrupted package (PGP signature)).
  Do you want to delete it? [Y/n] y
  error: failed to commit transaction (invalid or corrupted package (PGP signature))
  Errors occurred, no packages were upgraded.
  I tried pacman -Sw and still the same.  I also get the same with yaourt packer.

  leonax wrote:Is aur packages a no no then?
  Please read the wiki https://wiki.archlinux.org/index.php/AUR

• Unable to install irssi (problem with PGP)

  I haven't been able to install, and I get this:
  [~]$ sudo pacman -S irssi
  resolving dependencies...
  looking for inter-conflicts...
  Targets (1): irssi-0.8.15-5
  Total Installed Size: 2.53 MiB
  Proceed with installation? [Y/n] y
  (1/1) checking package integrity [#################################################################] 100%
  error: irssi: signature from "Evangelos Foutras <[email protected]>" is unknown trust
  error: failed to commit transaction (invalid or corrupted package (PGP signature))
  Errors occurred, no packages were upgraded.
  [~]$

  solar impulse wrote:
  I tried using the MIT keyserver but I still get the same error message.
  I also couldn't find the SigLevel line in /etc/pacman.conf
  In addition to endorsing skunktrader's suggestion, I might add that there has been any number of communications about this upgrade; starting from the message pacman spat out when you upgraded to 4.0 and including (not exhaustively), the mailing lists, these boards, the front page of the website, the IRC topic, etc...
  If you are going to run a rolling release distro, you might want to start paying attention to some of this stuff.

• One or more PGP signatures could not be verified!

  Trying to install anything with pacaur or using makepkg gives out this error:
  ==> Making package: cower 12-2 (Wed Jan 7 07:11:25 WET 2015)
  ==> Checking runtime dependencies...
  ==> Checking buildtime dependencies...
  ==> Retrieving sources...
  -> Downloading cower-12.tar.gz...
  % Total % Received % Xferd Average Speed Time Time Time Current
  Dload Upload Total Spent Left Speed
  0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0
  100 22636 100 22636 0 0 60301 0 --:--:-- --:--:-- --:--:-- 60362
  -> Downloading cower-12.tar.gz.sig...
  % Total % Received % Xferd Average Speed Time Time Time Current
  Dload Upload Total Spent Left Speed
  0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0
  0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0
  100 287 100 287 0 0 1136 0 --:--:-- --:--:-- --:--:-- 1134
  ==> Validating source files with md5sums...
  cower-12.tar.gz ... Passed
  cower-12.tar.gz.sig ... Skipped
  ==> Verifying source file signatures with gpg...
  cower-12.tar.gz ... FAILED (unknown public key 1EB2638FF56C0C53)
  ==> ERROR: One or more PGP signatures could not be verified!
  Can someone help?

  clfarron4 wrote:
  Potomac wrote:
  jasonwryan wrote:Like everything else, this can be automated with a couple of lines in your ~/.gnupg/gpg.conf file, as described in the wiki.
  I don't find this part in the wiki, can you tell me exactly where have you read this ?
  https://wiki.archlinux.org/index.php/Gnupg
  I saw automatic importing of missing keys in this BBS thread. Don't know if it is in the ArchWiki though.
  Just found it here: https://wiki.archlinux.org/index.php/Ma … e_checking
  It is a personal preference, I don't want to import Arch/AUR keys into my normal personal keyring - but reading the gpg (and makepkg) manpage it looks like if you set GNUPGHOME=/some/path first that should work to set a special keyring just for AUR and a custom config from the wiki.

• PGP signatures could not be verified

  I'm still somewhat new on using makepkg.  I previously customized the bind pkg for samba by copying the /var/abs/extra/bind directory into my /var/abs/local and adding a couple of build options. Worked like a charm and no issues.
  Today bind 9.10.2 was released and I wanted to update my package but I get:
  ERROR: One or more PGP signatures could not be verified! when updating using the latest abs bind package.
  ==> Making package: bind 9.10.2-1 (Wed Mar 4 16:47:20 PST 2015)
  ==> Checking runtime dependencies...
  ==> Checking buildtime dependencies...
  ==> Retrieving sources...
  -> Downloading bind-9.10.2.tar.gz...
  % Total % Received % Xferd Average Speed Time Time Time Current
  Dload Upload Total Spent Left Speed
  100 8282k 100 8282k 0 0 5669k 0 0:00:01 0:00:01 --:--:-- 5672k
  -> Downloading bind-9.10.2.tar.gz.asc...
  % Total % Received % Xferd Average Speed Time Time Time Current
  Dload Upload Total Spent Left Speed
  100 490 100 490 0 0 6640 0 --:--:-- --:--:-- --:--:-- 6712
  -> Found tmpfiles.conf
  -> Found sysusers.conf
  -> Found named.conf
  -> Found named.service
  -> Found localhost.zone
  -> Found localhost.ip6.zone
  -> Found 127.0.0.zone
  -> Found empty.zone
  ==> Validating source files with sha1sums...
  bind-9.10.2.tar.gz ... Passed
  bind-9.10.2.tar.gz.asc ... Skipped
  tmpfiles.conf ... Passed
  sysusers.conf ... Passed
  named.conf ... Passed
  named.service ... Passed
  localhost.zone ... Passed
  localhost.ip6.zone ... Passed
  127.0.0.zone ... Passed
  empty.zone ... Passed
  ==> Verifying source file signatures with gpg...
  bind-9.10.2.tar.gz ... FAILED
  ==> ERROR: One or more PGP signatures could not be verified!
  this is the abs bind package....why is it failing?

  Same error here.
  ==> Validando arquivos fonte com sha256sums...
  firefox-36.0.1.source.tar.bz2 ... Passou
  firefox-36.0.1.source.tar.bz2.asc ... Ignorada
  mozconfig ... Passou
  firefox.desktop ... Passou
  firefox-install-dir.patch ... Passou
  vendor.js ... Passou
  rhbz-966424.patch ... Passou
  firefox-fixed-loading-icon.png ... Passou
  ==> Verificando assinatura de arquivo fonte com gpg...
  firefox-36.0.1.source.tar.bz2 ... FALHOU (chave pública desconhecida 057CC3EB15A0A4BC)
  ==> ERRO: Uma ou mais assinaturas PGP não puderam ser verificadas!
  I have checked (http://allanmcrae.com/2015/01/two-pgp-k … rch-linux/) but to no avail.
  I do not understand why complicate things when they are working perfectly how it worked before...

• Cannot validate pgp signatures of microsoft security bulletins

  So I've been getting Microsoft security bulletins for years and I thought I would actually verify the PGP signature. I have not been able to yet. I found two public keys on microsoft sites:https://technet.microsoft.com/en-us/security/dn753714was the first key I imported. My PGP software says it is the wrong key for the June 2015 security bulletin:PHPWrong signature of Microsoft SecurityNotifications (Key ID: BF05BFF43AA549E5)Notably on that link above, the page says it was "Updated: December 15, 2015" (in the future). I found that page linked fromanother page.I found another key and replaced the above key with a slightly older one. I still get an "unknown" key errorTextSigned with unknown key(Key ID: BF05BFF43AA549E5)I also foundboth keyson the MIT key server.What do you get when you verify Microsoft PGP signatures?
  This topic first appeared in the Spiceworks Community

  Hi,
  Thanks for your advise. I record your feedback.
  Juke Chou
  TechNet Community Support

• Problem with Digital Signature strategy in Document Managment System

  Hello ALL,
  I am facing problem with Digital Signature strategy in DMS. If any help its greatly appreciated.
  I have senario where Approvers in DMS will review the document and approve the document and put on their digitial signature. if i have multiple approvers maintained in the characterstics it has to check weather it has been approved by all approvers otherwise it has to reset the status to for approval.
  My problem is i am able to reset the status back from approved to for approval using the badi document_status01 but when the next approver logs in to the document and change the status to approved he is not able to get the digital signature pop up which it comes only first user approves it.
  can any one help me out on whats going wrong in it.
  Thanks
  Srikanth Aduri.

  Hi,
  maybe the reason for this is that the status of the digital signature is not changed. Then the system thinks that the digital signature is still completed and therefore the user is not getting the pop-up again. The database table for the digital signature for documents is TC77. I hope this information is usefull for you.
  Best regards,
  Christoph

• Mirrored volumes pathing problems

  mirrored volumes pathing problems        
  I am running Windows 2008 Server Datacenter.
  I created some mirrored volumes with disk administrator.
  These disk are in a fibre channel fabric.
  All paths go down so disk administrator losses the disks.
  All paths come up and disk administrator recovers the disks.
  The mirrors all show as failed.
  There are disks that show as failed, and disks that show as foreign.
  When I import the foreign disks. 
  One of the mirrored volume starts resyncing, and the other mirrored volume comes up as 2 simple volumes.
  Both mirrored volumes were in sync when the paths went down.
  So I expected them to come back up as mirrored volumes when the paths come back up.
  There is no I/O running at the time of the path failures.

  So let me see if I understand correctly.
  2 volumes presented to 2008 Datacenter via fibre channel
  Volumes are then mirrored via windows
  Disks drop off line and then the second mirror is 2 simple volumes but the first is rebuilding.
  So question 1 - Is it for read performance that the disks are mirrored?
  Question 2 - what disk errors appear in the event log when this happens
  Question 3 - whats the HBA used in the server
  Question 4 - Whats the backend staorage
  Question 5 - Is MPIO being used?
  Do we know the reason that the paths became unavailable? That would be probably my biggest concern.
  Also when the simple volumes came back up was the data available?
  Brad Held http://windorks.wordpress.com

• An error has occurred. Please try again, and if the problem persists, contact your help desk or system administrator. (Error 3000)

  Hi,
  When i open my Password Reset portal then provide Username credentials in text box and click on next then asked the Securites Question Answers to me,i provide the correct Answers to the securites Question after this password reset portal asked
  me New Password and Confirm Password then click on next for resetting the password then gives below Error only for 2 Users. and all other users are working fine.
  An error has occurred. Please try again, and if the problem persists, contact your help desk or system administrator. (Error 3000:)
  Regards
  Anil Kumar

  Anything in the event log?

• TS3899 In my iPad 2 with IO6 today I can not send emails from my gmail account, they go to the outbox directly...why? How can i solve this problem? ..I restarted the IPad but the problem was not solved. Please help.

  In my iPad 2 with IO6 today I can not send emails from my gmail account, they go to the outbox directly...why? How can i solve this problem? ..I restarted the IPad but the problem was not solved. Please help.

  Greetings,
  Questions:
  1. What version of the Mac OS are you running (Apple > About this Mac)?
  2. What version of the iOS are you running (Settings > About)?
  3. Do you use MobileMe/ iCloud or another server based sync solution like Google or Yahoo?
  4. Do other changes to synced information like Address Book content sync successfully back and forth?
  Based on your description it sounds like you have a 1 way sync issue.  Events sync fine between the iOS devices and fine from the computer to the iOS devices but not from the iOS devices to the computer.
  Try:
  Backup your computer and iOS devices before doing anything else:
  http://support.apple.com/kb/HT1427
  http://support.apple.com/kb/ht1766
  Ensure all the devices in use are fully up to date: Apple > Software Update / Settings > General > Software Update
  Make separate backups of critical data:
  Backup your computer Addressbook: http://docs.info.apple.com/article.html?path=AddressBook/4.0/en/ad961.html
  Backup your computer iCal: http://support.apple.com/kb/HT2966
  Reset syncing on your Mac: http://support.apple.com/kb/TS1627
  Reply back if that does not resolve your issue.
  Hope that helps.

• After the last update iTunes no longer works...  "This application failed to start because MSVCF80.dll was not found.  Re-installing the application may fix this problem"  I tried and it did not fix the problem?

  After the last update iTunes no longer works...  "This application failed to start because MSVCF80.dll was not found.  Re-installing the application may fix this problem"  I tried and it did not fix the problem?

  Click here and follow the instructions.
  (99061)