GPG error when pulling updates from security.debian.org
Did an aptitude update on a Debian Lenny box and got:
W: GPG error: http://security.debian.org lenny/updates Release: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY AED4B06F473041FA W: You may want to run apt-get update to correct these problems
According to Debian News, the GPG key expired:
This key rollover is a normal maintenance task and was started in August 2010. For security reasons Debian's archive signing keys regularly expire after three years.
sudo aptitude install debian-archive-keyring
---8<--- The following packages will be upgraded: debian-archive-keyring 1 packages upgraded, 0 newly installed, 0 to remove and 59 not upgraded. ---8<--- Unpacking replacement debian-archive-keyring ... Setting up debian-archive-keyring (2010.08.28~lenny1) ... gpg: key F42584E6: "Lenny Stable Release Key <email@example.com>" not changed gpg: key 55BE302B: "Debian Archive Automatic Signing Key (5.0/lenny) <firstname.lastname@example.org>" not changed gpg: key 6D849617: "Debian-Volatile Archive Automatic Signing Key (5.0/lenny)" not changed gpg: key B98321F9: public key "Squeeze Stable Release Key <email@example.com>" imported gpg: key 473041FA: public key "Debian Archive Automatic Signing Key (6.0/squeeze) <firstname.lastname@example.org>" imported gpg: Total number processed: 5 gpg: imported: 2 (RSA: 2) gpg: unchanged: 3 gpg: no ultimately trusted keys found ---8<---
Now the "NO_PUBKEY" error is gone and I can go one with installing my updates.