[Software] [Solved] APT - The following signatures couldn't be verified

[grammargrill]

Hello,

I have spent a few hours scouring for a solution (temporarily I am using a workaround with --allow-insecure-repositories, which isn't ideal)

To preface everything else here is what I have tried

• Ensure /bin/sh is a symlink to dash

• reinstall debian-archive-keyring

• verify the .asc files are present and not expired

• use rsync to try and update keys

• sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys {KEYS} (I didn't want to do this, but it left the keys unchanged anyway

running `apt update` produces the following results (This used to work as early as the start of this month)

Code: Select all

Get:1 file:/etc/apt/mirrors/debian.list Mirrorlist [30 B]
Get:2 file:/etc/apt/mirrors/debian-security.list Mirrorlist [39 B]
Hit:3 https://deb.debian.org/debian bookworm InRelease
Hit:4 https://deb.debian.org/debian bookworm-updates InRelease
Hit:5 https://deb.debian.org/debian bookworm-backports InRelease
Get:6 https://deb.debian.org/debian-security bookworm-security InRelease [48.0 kB]
Err:6 https://deb.debian.org/debian-security bookworm-security InRelease
  The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 54404762BBB6E853 NO_PUBKEY BDE6D2B9216EC7A8
Reading package lists... Done
W: GPG error: https://deb.debian.org/debian-security bookworm-security InRelease: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 54404762BBB6E853 NO_PUBKEY BDE6D2B9216EC7A8
E: The repository 'mirror+file:/etc/apt/mirrors/debian-security.list bookworm-security InRelease' is not signed.
N: Updating from such a repository can't be done securely, and is therefore disabled by default.
N: See apt-secure(8) manpage for repository creation and user configuration details.

output for `uname -a`

Code: Select all

Linux server.tld 6.1.0-20-cloud-amd64 #1 SMP PREEMPT_DYNAMIC Debian 6.1.85-1 (2024-04-11) x86_64 GNU/Linux

output for `lsb_release -a`

Code: Select all

No LSB modules are available.
Distributor ID: Debian
Description:    Debian GNU/Linux 12 (bookworm)
Release:        12
Codename:       bookworm

output for `cat /etc/apt/sources.list`

Code: Select all

# See /etc/apt/sources.list.d/debian.sources

output for `cat /etc/apt/sources.list.d/debian.sources` (There are no other files in /etc/apt/sources.list.d)

Code: Select all

Types: deb deb-src
URIs: mirror+file:///etc/apt/mirrors/debian.list
Suites: bookworm bookworm-updates bookworm-backports
Components: main contrib
Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg

Types: deb deb-src
URIs: mirror+file:///etc/apt/mirrors/debian-security.list
Suites: bookworm-security
Components: main contrib
Signed-By: /usr/share/keyring/debian-archive-keyring.gpg

output for `cat /etc/apt/mirrors/debian.list` (There are no other files in /etc/apt/mirror besides these 2)

Code: Select all

https://deb.debian.org/debian

output for `cat /etc/apt/mirrors/debian-security.list`

Code: Select all

https://deb.debian.org/debian-security

[fabien]

Hello, welcome to the forums!

Code: Select all

Types: deb deb-src
URIs: mirror+file:///etc/apt/mirrors/debian-security.list
Suites: bookworm-security
Components: main contrib
Signed-By: /usr/share/keyring/debian-archive-keyring.gpg

I'm afraid you just made a typo

Code: Select all

$> ls -ld  /usr/share/keyring/
ls: cannot access '/usr/share/keyring/': No such file or directory
$> ls -ld  /usr/share/keyrings/
drwxr-xr-x 2 root root 4096 Nov 20 21:47 /usr/share/keyrings/

[grammargrill]

That fixed it, pretty embarrassed that I couldn't find a simple typo!

Thanks for the help.

[fabien]

You're welcome.

You can see some typos all the time, and all typos some of the time, but you can't see all typos all the time

Please mark your topic as [Solved] by editing the title of your first post, e.g.
[Software] [Solved] APT - The following signatures couldn't be verified

EDIT Wed May 8 15:43:24 CEST 2024: marked the topic as [Solved]