Yesterday when trying to update a server, we got a BADSIG error - the repository was au.archive.ubuntu.com
After a bit of research, we found that we had to reimport the key that is listed in the error message - but I'm wondering how do we know that new key is trustworthy?
http://naveenubuntu.blogspot.com.au/2011/08/fixing-gpg-keys-in-ubuntu.html
0 Answers