Getting GPG signature verification error The following signatures were invalid: NODATA 1 NODATA 2
P. J. McDermott
pjm at nac.net
Fri Jan 28 16:43:21 UTC 2011
On 01/28/2011 10:43 AM, shirish शिरीष wrote:
> Hi Mike,
> Today while updating the distribution I got the following error :-
>
> W: A error occurred during the signature verification. The repository
> is not updated and the previous index files will be used. GPG error:
> http://mozilla.debian.net ./ Release: The following signatures were
> invalid: NODATA 1 NODATA 2
>
> I do not know why this error came. I have just couple of months ago
> started with Debian on a Squeeze snapshot (which means the legacy
> issues which you have mentioned in the webpage shouldn't happen/be
> there)
>
> I refer to the instructions given here :-
>
> http://mozilla.debian.net/
>
> "You can thus also expect the last signature validation to differ
> depending on the Debian keyring version you use. "
>
> Now does it mean that I need to install a new version of Debian-keyring ?
>
> I have got Debian keyring version 2010.12.29
I don't know much about PGP keys, so I could be wrong, but I think you
may have to update your Mozilla archive key. http://mozilla.debian.net/
gives the following command to do this:
$ GET http://mozilla.debian.net/archive.asc | gpg --import
I checked the HTTP headers of that archive.asc file, and I see this:
Last-Modified: Sun, 09 Jan 2011 15:37:42 GMT
So if you started using these Mozilla packages a couple months ago, you
probably just have an out of date key.
HTH,
P. J. McDermott
More information about the pkg-mozilla-maintainers
mailing list