[R-sig-Debian] getting the Debian pgp key

Dirk Eddelbuettel edd at debian.org
Thu Mar 22 12:26:39 CET 2007


On 22 March 2007 at 10:02, Johannes Ranke wrote:
| * Dirk Eddelbuettel <edd at debian.org> [070320 03:30]:
| > 
| > On 19 March 2007 at 15:45, Anne York wrote:
| > | I've tried to obtain the public key as described in the 
| > | README file in bin/linux/Debian on CRAN. The server 
| > | specified in the README times out. The mit public key 
| > | server responds that there is no such key.
| > 
| > Based on the last messages by Johannes and Vincent, I would expect these
| > files to be on all CRAN mirrors. Maybe you can just try a different one?
|  
| I am not sure if it makes sense to put the keys on the mirrors. If they
| should be compromised, the keys could be compromised, too, so I would
| think it's better to only provide them from an independent source as the 
| keyserver network. 

Agreed.  I was wrong there --- sorry for implying that you and Vincent had
suggested to put them there. My bad,
 
| As Vincent, I was just able to receive the keys with the given command
| from the keyservers, no timeout. Could you please report, Anne, if the
| server still times out and if you could solve your problem?

For the record, it also worked fine for me.
 
| Of course, Vincent is right, you can also choose to trust the CRAN
| servers and ignore the warning, that the key is not on your system.

Yes. Thanks again for all the backport work!

Dirk

-- 
Hell, there are no rules here - we're trying to accomplish something. 
                                                  -- Thomas A. Edison



More information about the R-SIG-Debian mailing list