CLARIF: /etc/apt/trusted.gpg.d is considered insecure

2025-03-09 15:40:17 +00:00 · 2021-04-26 09:17:31 -04:00 · 2021-04-26 09:17:31 -04:00 · 593a02a02f
commit 593a02a02f
parent 36053a3bc0
1 changed files with 2 additions and 1 deletions
--- a/scripts/ansible
+++ b/scripts/ansible
@ -92,7 +92,8 @@ if [ ! -f /etc/debian_version ]; then    # e.g. RaspiOS, Ubuntu, Mint & Debian
    exit 1
 fi

-# 2021-04-26: JV & @holta WIP. The apt-key command is dangerous and going away:
+# 2021-04-26: JV & @holta WIP.  The apt-key command is going away, and the past
+# practice of putting keys in /etc/apt/trusted.gpg.d is considered insecure:
 # https://www.linuxuprising.com/2021/01/apt-key-is-deprecated-how-to-add.html
 # So we put .gpg key in repo iiab/iiab, also for reliable installs/containers.