Expired key signature

Similar to this:

If you have a Debian-10 TemplateVM that you use for a backup Tor Browser instances (as per our wiki instructions), you get this when trying to do Template updates (in the last day or so):

The following signatures were invalid: EXPKEYSIG CB8D50BB77BB3C48 Patrick Schleizer adrelanos@riseup.net

I see that is a sub fingerprint that according to the Whonix Signing Key page doesn’t expire until 2026.

1 Like

I guess it’s similar to this:



are based on:

Re-running these instructions will update the signing key.

I guess the bug fix request here is fixing that for users who won’t re-run these instructions or to somehow automatically fix this? This is not possible. Since signing key is now expired, there is no way even in theory I could push an upgrade to fix this.

In case of:

To improve this situation in the future in case of A), the only thing that could be suggested is installing package repository-dist. Could be suggested as optional in this wiki template at the bottom https://www.whonix.org/wiki/Template:W-APT-Repository-Key? What do you think?

Does this answer your post?

Yes, thanks.

1 Like
[Imprint] [Privacy Policy] [Cookie Policy] [Terms of Use] [E-Sign Consent] [DMCA] [Contributors] [Investors] [Priority Support] [Professional Support]