Trisquel 8 giving an error "packages could not be authenticated"
Hey,
I tried installing some new packages today, and it said that the packages couldn't be authenticated, asking if I wanted to go on and install them anyway. I choose "no". Is anyone having the same issue?
My sources.list file looks like this
deb tor+https://archive.trisquel.info/trisquel/ flidas main
deb-src tor+https://archive.trisquel.info/trisquel/ flidas main #Added by software-properties
I remember a few days the Trisquel website had the SSL Certificate wrong for a few hours, could it be related?
Thanks.
Any help please?
Thanks.
I tried running
sudo apt update
and noticed that even some PPAs failed to authenticate (something to do with the Hash Verification). Maybe this means that it's not related to Trisquel server, but instead something on my part. I just don't know what it could be.
> I tried running
>
> sudo apt update
>
> and noticed that even some PPAs failed to authenticate (something to do
> with the Hash Verification).
Can you post the output of
$ sudo apt update
and the output of
$ ls /etc/apt/sources.list.d/
and the contents of
/etc/apt/sources.list
?
sudo apt update
Get:1 tor+http://ppa.launchpad.net/i2p-maintainers/i2p/ubuntu xenial InRelease
Err:3 tor+http://ppa.launchpad.net/i2p-maintainers/i2p/ubuntu xenial/main amd64 Packages
Hash Sum mismatch
Err:4 tor+https://archive.trisquel.info/trisquel flidas/main Sources
Hash Sum mismatch
Err:5 tor+http://ppa.launchpad.net/i2p-maintainers/i2p/ubuntu xenial/main Translation-en
Err:6 tor+https://archive.trisquel.info/trisquel flidas/main amd64 Packages
Fetched 72,7 kB in 1s (45,2 kB/s)
Reading package lists... Done
E: Failed to fetch tor+http://ppa.launchpad.net/i2p-maintainers/i2p/ubuntu/dists/xenial/main/binary-amd64/by-hash/SHA256/780c505af3ab2e08eceafd50964d9eb7cc0788ee1f7393180d13531c82c49e8b Hash Sum mismatch
E: Failed to fetch tor+http://ppa.launchpad.net/i2p-maintainers/i2p/ubuntu/dists/xenial/main/i18n/by-hash/SHA256/f946bd8c89bce29e5dc4d650acbc10f777a2fa997c73d8e76c0f86cbe17c06d5
E: Failed to fetch tor+https://archive.trisquel.info/trisquel/dists/flidas/main/source/Sources.bz2 Hash Sum mismatch
E: Failed to fetch tor+https://archive.trisquel.info/trisquel/dists/flidas/main/binary-amd64/Packages.bz2
E: Some index files failed to download. They have been ignored, or old ones used instead.
nano /etc/apt/sources.list
# Uncomment this lines to enable the backports optional repository
# deb http://us.archive.trisquel.info/trisquel/ flidas-backports main
# deb-src http://us.archive.trisquel.info/trisquel/ flidas-backports main
deb tor+https://archive.trisquel.info/trisquel/ flidas main
deb-src tor+https://archive.trisquel.info/trisquel/ flidas main #Added by software-properties
ls /etc/apt/sources.list.d/
i2p-maintainers-ubuntu-i2p-xenial.list
i2p-maintainers-ubuntu-i2p-xenial.list.save
micahflee-ubuntu-ppa-xenial.list
micahflee-ubuntu-ppa-xenial.list.save
I have already tried
sudo apt-key update
sudo apt clean
sudo apt update
but everything remains the same.
> Hash Sum mismatch
From [1], try
$ apt-get clean
$ rm -rf /var/lib/apt/lists/*
$ apt-get clean
$ apt-get update
> # Uncomment this lines to enable the backports optional repository
> # deb http://us.archive.trisquel.info/trisquel/ flidas-backports main
> # deb-src http://us.archive.trisquel.info/trisquel/ flidas-backports main
> deb tor+https://archive.trisquel.info/trisquel/ flidas main
> deb-src tor+https://archive.trisquel.info/trisquel/ flidas main #Added by software-properties
Why don't you have flidas-security and flidas-updates? You should have
some lines that look like this:
deb https://archive.trisquel.info/trisquel/ flidas-security main
deb-src https://archive.trisquel.info/trisquel/ flidas-security main
deb https://archive.trisquel.info/trisquel/ flidas-updates main
deb-src https://archive.trisquel.info/trisquel/ flidas-updates main
I don't know, this was made by Synaptic. I have been receiving regular updates, only thing I did was adding the Tor part.
I run those commands, and got this:
$ sudo apt-get clean
$ sudo apt-get update
Get:1 tor+http://ppa.launchpad.net/i2p-maintainers/i2p/ubuntu xenial InRelease
Get:3 tor+http://ppa.launchpad.net/i2p-maintainers/i2p/ubuntu xenial/main amd64 Packages [1488 B]
Get:4 tor+http://ppa.launchpad.net/i2p-maintainers/i2p/ubuntu xenial/main Translation-en [1032 B]
Fetched 17,4 MB in 1min 15s (231 kB/s)
Reading package lists... Done
I don't know why only i2p PPA was used here, I was expecting onionshare PPA and regular trisquel updates as well.
I am able, however, to install packages without the system complaining about hash sums and such...
My sources.list looks like this now
__________________________________________________________
# deb http://us.archive.trisquel.info/trisquel/ flidas main
# deb http://us.archive.trisquel.info/trisquel/ flidas-updates main
# deb http://@SECURITYHOST@@SECURITYPATH@ flidas-security main
# See http://trisquel.info/wiki/ for how to upgrade to
# newer versions of the distribution.
# Uncomment this lines to enable the backports optional repository
# deb http://us.archive.trisquel.info/trisquel/ flidas-backports main
# deb-src http://us.archive.trisquel.info/trisquel/ flidas-backports main
deb tor+https://archive.trisquel.info/trisquel/ flidas main
deb-src tor+https://archive.trisquel.info/trisquel/ flidas main #Added by softw$
________________________________________________________
Should I change something?
Thanks.
Btw the sources.list.d gives this output
i2p-maintainers-ubuntu-i2p-xenial.list
i2p-maintainers-ubuntu-i2p-xenial.list.save
micahflee-ubuntu-ppa-xenial.list
micahflee-ubuntu-ppa-xenial.list.save
Thanks
> My sources.list looks like this now
> __________________________________________________________
> # deb http://us.archive.trisquel.info/trisquel/ flidas main
> # deb http://us.archive.trisquel.info/trisquel/ flidas-updates main
> # deb http://@SECURITYHOST@@SECURITYPATH@ flidas-security main
>
> # See http://trisquel.info/wiki/ for how to upgrade to
> # newer versions of the distribution.
>
> # Uncomment this lines to enable the backports optional repository
> # deb http://us.archive.trisquel.info/trisquel/ flidas-backports main
> # deb-src http://us.archive.trisquel.info/trisquel/ flidas-backports main
> deb tor+https://archive.trisquel.info/trisquel/ flidas main
> deb-src tor+https://archive.trisquel.info/trisquel/ flidas main #Added by
> softw$
> ________________________________________________________
>
> Should I change something?
If you want bug fixes you should enable flidas-updates, and if you want
security updates you should enable flidas-security. Other than that
everything looks good to me. If you can update and install without
errors or warnings then I think your original problem is fixed.
See this page[1] and scroll to the section called "Install updates from"
for an explanation of how flidas-updates and flidas-security are
different from flidas.
> Btw the sources.list.d gives this output
>
> i2p-maintainers-ubuntu-i2p-xenial.list
> i2p-maintainers-ubuntu-i2p-xenial.list.save
> micahflee-ubuntu-ppa-xenial.list
> micahflee-ubuntu-ppa-xenial.list.save
This also looks fine. The /etc/apt/sources.list.d/*.list files contain
the deb and deb-src lines for your third party repositories, so assuming
that you want both of these PPAs installed this is the expected output.
Shit... it means I have been going without security updates for some time now. After correcting it I got 137 updates, onve of them I noticed was Abrowser which has been receiving regular updates nonetheless. Synaptic should avoid letting the user without security updates, IMHO.
Thanks for the help! I don't receive those errors anymore, was able to add "tor" to my sources.list in all lines and get the updates in order. Thanks!
> Shit... it means I have been going without security updates for some
> time now. After correcting it I got 137 updates, onve of them I
> noticed was Abrowser which has been receiving regular updates
> nonetheless.
I received an Abrowser update today as well, so that might have been a
coincidence. Abrowser is a unique case. Firefox/Abrowser is a rolling
package in Ubuntu/Trisquel, so whereas with a stable package the
maintainer has to backport all security fixes, with Abrowser each new
version comes with Mozilla's recent security fixes. I think you might
have been okay for Abrowser, although it's good that you now have
security updates enabled for everything else.
> Synaptic should avoid letting the user without security updates, IMHO.
I indeed can't think of a reason why a user wouldn't want security
updates. Security updates are at least enabled by default. I'm not sure
how yours got messed up.
> Thanks for the help! I don't receive those errors anymore, was able to
> add "tor" to my sources.list in all lines and get the updates in
> order. Thanks!
No problem. I'm glad everything's working now.