Hello,
up to sometime back last year, I used this comfortable script to automatically update external repository signatures:
#!/bin/sh
if [ -z $1 ];
then
echo 2GETKEY --- Fetch gpg keys for apt-get
echo ""
echo 'Usage: getkey <8_digit_keycode> [keyserver]'
echo ""
echo ""
echo '<8_digit_keycode> Second part of 16 digit string shown by apt-get update'
echo ""
echo '[keyserver] Keyserver used by the script:'
echo ' 1. if left blank ---> subkeys.pgp.net'
echo ' 2. debian ---> keyring.debian.org'
echo ""
exit 1
fi
CODE="$1"
if [ -z $2 ]
then
SERVER=${2:-subkeys.pgp.net}
else
if [ $2 = "debian" ]
then
SERVER='keyring.debian.org'
else
SERVER=${2:-$2}
fi
fi
gpg --keyserver "$SERVER" --recv "$CODE" && \
gpg --fingerprint "$CODE"
gpg --armor --export "$CODE" | apt-key add -
exit 0
In many cases, today, the two servers included in the script do not find any suitable signatures, while keyserver.ubuntu.com fills the job up.
Does anybody know what is happening?
THX