Installing the x2go-keyring package from an unauthenticated repository bears the chance that this is not our package but a malicious third-party one which will not contain our public keys. This includes repository metadata and any packages downloaded from unauthenticated repositories. Not being able to verify signatures means that any content downloaded from the remote location could be injected/offered by a malicious third party and need not come from the X2Go Project. If you were unable to bootstrap the repository GPG key previously, apt-get will fail to validate the signatures and discard the downloaded repository metadata. Only one group may be active at a given time. # X2Go Repository (sources of nightly builds)Įdit this new data and make sure to uncomment desired components and comment non-desired components. # X2Go Repository (sources of Saimaa ESR builds) # X2Go Repository (sources of release builds) X2go.list # X2Go Repository (release builds) Then add the X2Go repository (binaries and sources) as a couple of new lines (example for Debian buster): If you have not gotten a directory named /etc/apt// add the lines to /etc/apt/sources.list.
0 kommentar(er)
