| 13 Feb 2019 |
 Linda | I'm considering the latter. | 21:22:14 |
| Linda | like, a lot | 21:22:19 |
| Linda | because it's hacky and undoes previous stuff a sysadmin has done | 21:22:35 |
 shirish | Linda: if you feel, you could put together a compressed FAQ.gz in the package | 21:24:01 |
| Linda | For the prior: If it's in /etc/apt/trusted.gpg.d, that key can be used to verify any packages from any APT sources.
If it's in /usr/share/keyrings/*, it has to be explicitly trusted for Matrix.org only. | 21:24:05 |
| shirish | an example of what I mean can be found at - | 21:25:26 |
| shirish | /usr/share/doc/popularity-contest$ ls
changelog.gz copyright examples FAQ.gz README.gz | 21:25:39 |
| shirish | either a FAQ.gz or README.gz should be good enough. | 21:26:12 |
 Maximus | Linda: for my personal knowledge, website usually recommend to just do apt-key add - | wget keyUrl -O - which ends up in the full trusted keys I presume. What would be the command that would do it right? | 21:26:14 |
| Linda | Maximus: Is the key .asc or .gpg? | 21:26:51 |
| Linda | And yes, they would end up full-trusted. | 21:27:04 |
| Maximus | .asc | 21:28:57 |
| Linda | Redacted or Malformed Event | 21:29:22 |
| Linda | Uh, no | 21:29:53 |
| Linda | Not what I wrote, silly nheko | 21:30:14 |
| Linda | gpg --no-options --no-default-keyring --no-auto-check-trustdb --no-keyring --import-options import-export --import < $KEY_IN > /usr/share/keyrings/$KEYRING_OUT.
Then setup /etc/apt/sources.list.d/foo.list manually, using the usual deb [signed-by=/usr/share/keyrings/$KEYRING_OUT] https://url.example/ component component syntax. | 21:30:31 |
| Linda | Maximus: Should be .gpg. The GnuPG 2.1.14 command above will convert it properly. | 21:31:42 |
| Linda | (to the legacy key format understood by APT, because the new --export format isn't understood.) | 21:32:02 |
| Maximus | ok | 21:32:10 |
| * Maximus will never understand why the commands that make your system safe are always so much harder than those which do not | 21:32:31 |
| shirish | short answer - that's because when they were invented, they were invented for geeks by geeks ;) | 21:33:22 |
| Linda | Maximus: If you ever need to recall the instructions, https://wiki.debian.org/DebianRepository/UseThirdParty gets pretty close | 21:37:48 |
| Maximus | thank you | 21:38:57 |
| Maximus | bookmarked | 21:38:59 |
| Linda | NB: matrix-archive-keyring does not yet do pinning. I'll look into it. | 21:39:24 |
|  Willem joined the room. | 22:10:56 |
| 14 Feb 2019 |
| Linda | It's done. | 04:14:55 |
| Linda | Release-ready, I hope. | 04:15:04 |
| Linda | Redacted or Malformed Event | 04:20:35 |
| Linda | Redacted or Malformed Event | 04:20:38 |
