markling

Asked: 2015-11-05 07:44:01 +0800 CST2015-11-05 07:44:01 +0800 CST 2015-11-05 07:44:01 +0800 CST

Can libreoffice ppa be trusted if it has "no ultimately trusted keys"?

772

Updating ppa's for libreoffice gets:

sudo apt-add-repository ppa:libreoffice/libreoffice-5-0

...

Press [ENTER] to continue or ctrl-c to cancel adding it

...
gpg: key 1378B444: public key "Launchpad PPA for LibreOffice Packaging" imported
gpg: no ultimately trusted keys found
gpg: Total number processed: 1
gpg:               imported: 1  (RSA: 1)
OK

How then might libreoffice ppa not be trusted?

1 Answers

Voted

Byte Commander
2015-11-05T09:39:44+08:002015-11-05T09:39:44+08:00
I am quoting the official Debian wiki page about SecureApt:

What does the "gpg: no ultimately trusted keys found" warning mean?

The Warning: "no ultimately trusted keys found" means that gpg was not configured to ultimately trust a specific key. Trust settings are part of OpenPGPs Web-of-Trust which does not apply here. So there is no problem with this warning. In usual setups the users own key is ultimately trusted.

That means yes, you may trust the keys.

GPG is by default configured to only "ultimately trust" your own keys (if you ever created any).
3

Web Analytics Made Easy - Statcounter