In this blog post, we’ll explain how to update the signing key for Percona Debian and Ubuntu packages.
Some of the users might have already noticed following warning on Ubuntu 16.04 (Xenial Xerus):
W: http://repo.percona.com/apt/dists/xenial/InRelease:
Signature by key 430BDF5C56E7C94E848EE60C1C4CBDCDCD2EFD2A uses
weak digest algorithm (SHA1)
when running apt-get update
.
Percona .deb
packages are signed with a key that
uses an algorithm now considered weak. Starting with
the next release, Debian and Ubuntu
packages are signed with a new key that uses the much
stronger SHA-512 algorithm. All future package release will also
contain the new algorithm.
You’ll need to do one of the …
[Read more]