Xensource updates apt repository missing GPG key
Wednesday, July 15th, 2009 by SteveXensource’s Debian VM templates have always added a xensource updates repository (under /etc/apt/sources.list.d/xensource.list), but until recently it’s been empty. Now they’ve added some updates (replacement xen kernel and xen guest tools) aptitude displays big red warnings that this repository isn’t trusted:
W: GPG error: http://updates.xensource.com etch Release: The following signatures couldn’t be verified because the public key is not available: NO_PUBKEY 841D6D8DFE3F8BB2
W: You may want to run apt-get update to correct these problems
This is because the GPG key Xensource use to sign their packages hasn’t been added to the VM’s apt keyring, and here’s how to fix it:
wget -q http://updates.vmd.citrix.com/XenServer/5.5.0/GPG-KEY -O- | apt-key add -
(From tiri.li).