| 13 Feb 2019 |
 Maximus | Linda: I was thinking of a command that show me the trusted status of the matrix.org key, showing that per example it's trusted from everything, and then see how that is different after the package is installed | 20:29:08 |
| Maximus | (if it makes sense? | 20:29:19 |
 Linda | For the "trusted from everything" part, apt-key finger | grep -i matrix kind of shows if it's trusted by APT for everything. It should be empty. | 20:32:07 |
| Linda | For the other stuff, let me think... | 20:32:12 |
| Linda | gpg --no-default-keyring --keyring /usr/share/keyrings/matrix-archive-keyring.gpg --fingerprint shows the fingerprint for that keyring.
| 20:33:54 |
| Linda | grep -ir "matrix.org" /etc/apt/sources.list* to see your Matrix.org source lists.
| 20:35:08 |
| Linda | If there's [signed-by=] deb or deb-src lines only, then it's working. | 20:35:25 |
| Linda | Like, this is my /etc/apt/sources.list.d/matrix-org.list:
# This sourcelist is managed by the matrix-archive-keyring package; changes
# done here will be overridden by the next package configuration or update.
deb [signed-by=/usr/share/keyrings/matrix-archive-keyring.gpg] http://matrix.org/packages/debian/ sid main
deb-src [signed-by=/usr/share/keyrings/matrix-archive-keyring.gpg] http://matrix.org/packages/debian/ sid main
| 20:36:09 |
| Linda | I'm not sure if I understood your question more than that? | 20:36:43 |
| Maximus | I think i got the info I needed | 20:37:30 |
| Linda | If you go dpkg-reconfigure matrix-archive-keyring and it will default APT sources to "no" again (should maybe change that to be persistent to the previous choice), it will immediately remove /etc/apt/sources.list.d/matrix-org.list just to clarify. | 20:39:14 |
| Linda | if you choose "no "there | 20:39:30 |
| Linda | also happens when you uninstall | 20:39:36 |
| Maximus | looks like it's working | 20:41:27 |
| Maximus | I said yes to use APT stuff, and no to trust fully | 20:41:37 |
| Maximus | the sources have what you described | 20:41:47 |
| Linda | I need to polish some source code and it will be ready tomorrow (probably) | 20:41:57 |
| Maximus | yep. Just the distro name in the source.list wasn't right for my case, but the rest seems fine | 20:42:20 |
| Linda | First-time install doesn't ask the APT "trust fully" question for a good reason. It defaults to false. The APT "full trust" question is asked by dpkg-reconfigure only because it defaults to asking every little question (same as ---priority=low), where the typical sysadmin tools use --priority=high. | 20:43:32 |
| Linda |
yep. Just the distro name in the source.list wasn't right for my case, but the rest seems fine
What was it? | 20:43:41 |
| Linda | The DEBUG line I added. | 20:43:55 |
| Linda | It found sid fine for me. | 20:44:00 |
| Linda | If it was empty, I understood you're missing lsb_release and I should force that to be a dependency in that case? | 20:44:25 |
| Maximus | it was synda or smth | 20:46:15 |
| Maximus | I'm using Linux Mint | 20:46:23 |
| Maximus | sonya was the value | 20:46:35 |
| Linda | Yeah, well then it did the right thing. Except I don't really whitelist distributions. | 20:46:41 |
| Linda | It's just lsb_release -cs. | 20:46:56 |
| Maximus | In my case, the file you would want to read is /etc/upstream-release/lsb-release | 20:47:04 |
| Maximus | yep | 20:47:35 |
