!cApDlsILLZkmAyVoxe:matrix.org

Matrix on Debian

241 Members
https://wiki.debian.org/Matrix91 Servers

Load older messages


SenderMessageTime
14 Feb 2019
@andrewsh:matrix.organdrewshanyway, other than that, it sounds fine to me 🙂14:57:26
@andrewsh:matrix.organdrewshI think the audiences for the Policy and for this notice do not necessarily overlap a lot 😃14:57:55
@lindalap:matrix.orgLinda

A small clarification before I wrap this up:

_Description: Use APT data sources from Matrix.org?
 The APT package management system may be configured to download supplemental
 Debian/Ubuntu packages via the Matrix.org package repository. These packages
 are digitally signed with keys from matrix-archive-keyring, but may require
 software outside of your system's distribution to either build or function.
 .
 Packages from these sources may not be up to par with the technical
 requirements set in the Debian Policy for this operating system.
15:09:04
@andrewsh:matrix.organdrewshI think the previous version was better15:11:17
@andrewsh:matrix.organdrewsh(no need to specify it’s Debian/Ubuntu I think)15:11:30
@lindalap:matrix.orgLinda

That dialog only triggers for Debian and Ubuntu, I'm afraid.

15:11:43
@lindalap:matrix.orgLinda

But I agree now, I shouldn't say that because they are not part of the Debian or Ubuntu distributions

15:12:45
@andrewsh:matrix.organdrewshI mean15:12:58
@andrewsh:matrix.organdrewshyes, first they are not from Debian or Ubuntu15:13:06
@andrewsh:matrix.organdrewshand then the user likely knows what system they’re running15:13:17
@andrewsh:matrix.organdrewshso I don’t think there’s a need to reiterate that15:13:28
@lindalap:matrix.orgLinda

Good point. Changed it back, thanks.

15:13:45
@lindalap:matrix.orgLinda

I'm tempted to change

Trust this keyring in APT to authenticate packages?

to

Live dangerous(ly) and trust this keyring in APT to authenticate packages?

15:20:27
@lindalap:matrix.orgLinda
_Description: Trust this keyring in APT to verify data sources from anywhere?
 You may choose to enable matrix-archive-keyring as a system trusted keyring
 for the APT package management system, if you need it in place of the Debian
 archive in some situation.
 .
 Adding keyrings to APT's list of trusted keys is not necessary in most cases,
 and may be a risk for your system. Usually, it may be simply enough to use the
 "Signed-By" option described on the sources.list(5) manual page.

Ended up with this.

15:33:24
@lindalap:matrix.orgLindaDownload matrix-archive-keyring_2015.12.09+debian0.8_all.deb16:51:05
@lindalap:matrix.orgLindaDownload matrix-archive-keyring_2015.12.09+debian0.8_amd64.build16:51:09
@lindalap:matrix.orgLindaDownload matrix-archive-keyring_2015.12.09+debian0.8_amd64.buildinfo16:51:12
@lindalap:matrix.orgLindaDownload matrix-archive-keyring_2015.12.09+debian0.8_amd64.changes16:51:15
@lindalap:matrix.orgLindaDownload matrix-archive-keyring_2015.12.09+debian0.8.dsc16:51:18
@lindalap:matrix.orgLindaDownload matrix-archive-keyring_2015.12.09+debian0.8.tar.xz16:51:22
@lindalap:matrix.orgLinda

New build. Changes:

  • If you have configured /etc/apt/sources.list.d/matrix-org.list manually before installing this package, the debconf(1) question "Use data sources from Matrix.org?" will default to "yes" to use them (instead of always "no").
  • Code cleanups. "Bad APT keys" warning should show up much earlier now before configuring the package, rather than at very late after the package has been installed.
  • Minor changes to wording of debconf(1) templates (questions).

Ping Maximus. Thanks so far.

16:53:58
@lindalap:matrix.orgLinda

With #1, I mean migration from old Synapse install instructions will be smoother.

16:54:31
@max:kamax.ioMaximus Linda: gonna try on a proper server install now 17:00:44
@richvdh:sw1v.orgrichvdh left the room.17:01:35
@max:kamax.ioMaximussmth didn't work right I think17:03:52
@lindalap:matrix.orgLinda

Btw, if you want to build from source: Extra the *.tar.xz file somewhere, apt install devscripts then run debuild -us -uc in the directory to create the same files as attached above to the ../directory.

17:03:53
@max:kamax.ioMaximus

ok so I would like this to happen:

  • remove the pgp key from the global trust
  • have the key added to its own keyring
  • have the apt source only with that keyring.

I managed with the previous package but this didn't work (this is a debian system)

17:04:58
@max:kamax.ioMaximusimage.png
Download image.png
17:06:09
@max:kamax.ioMaximusI need "yes" to this, right?17:06:14
@lindalap:matrix.orgLinda

I guess. If says "no" if it didn't find /etc/apt/sources.list.d/matrix-org.list (that filename specifically), or if you had previously chosen "no".

17:06:38

Show newer messages


Back to Room ListRoom Version: