#10821 (Bug) OBS: Ubuntu 16.04: uses weak digest algorithm (SHA1)
+1 0
Closed
Component: DisplayCAL
Created by romplx
Last modified
When adding OBS Ubuntu 16.04 repository, apt warns that the repo uses SHA1 for encryption. The repo works, but this message appears every time you issue apt-get update:
W: http://download.opensuse.org/repositories/home:/fhoech/xUbuntu_16.04/Release.gpg: Signature by key 16B2D5A8C8B89785C1A93E67405899B3DAE4169B uses weak digest algorithm (SHA1)
It’s just a warning, but not something I can change as the repo is provided by openSUSE Build Service. You may report this upstream for the openSUSE project against the BuildService component.
According to https://github.com/openSUSE/obs-sign/issues/5 , you have to switch from default RSA to DSA keys …
Thanks, that’s helpful, I may try that.
Key has been updated. Let me know if this gets rid of the warning.
Yeah its fixed. Thanks!