This worries me as well.Code:........ W: The repository 'http://debian-knoppix.alioth.debian.org ./ Release' is not signed. N: Data from such a repository can't be authenticated and is therefore potentially dangerous to use. ...
Typing apt-get update in terminal:and with apt-get upgrade:Code:........ W: The repository 'http://debian-knoppix.alioth.debian.org ./ Release' is not signed. N: Data from such a repository can't be authenticated and is therefore potentially dangerous to use. N: See apt-secure(8) manpage for repository creation and user configuration details. knoppix@Microknoppix:~$Code:Preparing to unpack .../init-system-helpers_1.29_all.deb ... Unpacking init-system-helpers (1.29) over (1.24) ... dpkg: error processing archive /var/cache/apt/archives/init-system-helpers_1.29_all.deb (--unpack): trying to overwrite '/usr/share/man/man8/update-rc.d.8.gz', which is also in package sysv-rc 2:2.88dsf-53.2knoppix0 Processing triggers for libc-bin (2.22-5) ... Processing triggers for man-db (2.7.5-1) ... Errors were encountered while processing: /var/cache/apt/archives/init-system-helpers_1.29_all.deb E: Sub-process /usr/bin/dpkg returned an error code (1) knoppix@Microknoppix:~$
This worries me as well.Code:........ W: The repository 'http://debian-knoppix.alioth.debian.org ./ Release' is not signed. N: Data from such a repository can't be authenticated and is therefore potentially dangerous to use. ...
Which Knoppix version are you using? Still V7.2.0? If so, this version is from summer 2013 and outdated. The current release is V7.6.1 (Jan 2016).
And by the way - never try "apt-get upgrade" within a Knoppix installation.
Last edited by Werner P. Schulz; 04-02-2016 at 06:27 AM.
My LiveUSB is made from a Knopppix 7.6.1 iso with a release date of 2016-01-16.
I get the W line when I call up Synaptic and merely do a 'reload'.
I concur on never doing the upgrade, but the warning about signing seemed unusual
enough to question. Might this be an oversight on KK's part?
FWIW, I did a libc6 update per KK's suggestion.
Last edited by utu; 04-02-2016 at 03:33 PM.
http://knoppix.net/wiki/HD_Install_Warning_not_to_do_it
→ Why not upgrade Knoppix?
http://debian-knoppix.alioth.debian.org/ isn't part of the Debian releases and maintainer of most of the packages within the archive there is "Klaus Knopper <knoppix@knopper.net"... but the warning about signing seemed unusual enough to question.
You can provide archive signatures in an archive under your maintenance, but it isn't stipulated. Prof. Knopper signs the whole ISOs with his key, not his archive. If in doubt you can download a package of his archive, build his checksum and compare this with the checksum listed in
http://debian-knoppix.alioth.debian.org/Sources.gz
.
I'm looking for an expert opinion as to whether I should or should not concern myself
with the Synaptic warning about specifically referenced Alioth material 'not being signed'.
I suspect that one answer might be that this particular warning may just be disregarded,
for technical an/or substantial reasons beyond my knowledge & experience,
but I don't know that this is necessarily so.
IMHO, nothing is wrong with Knoppix and apt-get. As to doing apt-get upgrade, that should IMHO be considered potentially dangerous in most Debian configurations. It may go well, but quite often, it doesn't. There are many reasons why. One of the most important is that in practice, a running system will often have some packages not native to the release mixed in - like Knoppix.
I have found one safe way to proceed, "everywhere Debian", to be
Then I get a report of the upgradable packages. In some cases, I will consider the risk of trouble so small that I proceed with the ordinary upgrade, but most often, I will start with some selected, important packages. I'm not sure how much is won with a huge upgrade within a Knoppix release, even if it should be possible. Like now with Debian 8.3 -> 8.4. I rather do the absolutely necessary updates and wait for the next Knoppix release, and that has worked fairly well over the years.Code:sudo apt-get update && sudo apt-get -s upgrade
FYI, the output, right now, of sudo apt-get -s upgrade is 2487 lines long, 1092 packages to upgrade on a pristine Knoppix 7.6.1. Much of that is because unstable is among the sources.
The corresponding list on plain Debian 8.3 has 70 packages to upgrade. Still too much for me to trust all will go well.
Seagate ST8000NM0055 8TB 7200RPM 256MB SATA 6.0 Gb/s 3.5" Enterprise Hard Drive
$41.62
HITACHI HUS724040ALA640 4TB 7200RPM 64MB SATA 6.0Gb/s 3.5" HARD DRIVE ZERO HOURS
$52.00
HGST Ultrastar DC HC520 HUH721212ALE601 12TB SATA 6Gb 256MB 3.5" Enterprise HDD
$82.99
Seagate ST1000VM002 1TB 64MB SATA6Gb/s 3.5" (Low Power) Hard Drive -PC, CCTV DVR
$24.99
HGST Ultrastar DC HC520 12TB SATA 6Gb 256MB 3.5" Enterprise HDD- HUH721212ALE601
$82.99
HGST Ultrastar HE10 10TB SATA 6.0Gb/s 7200 3.5" Datacenter HDD - HUH721010ALE601
$79.99
Seagate ST12000NM0127 12TB 256MB 7200RPM 3.5" SATA 6.0Gb/s Enterprise Hard Drive
$87.99
WD Ultrastar DC HC530 14TB SATA 6G 3.5" 7200RPM Enterprise HDD - WUH721414ALE604
$110.00
WD 5TB Certified Refurbished Elements, External Hard Drive - RWDBU6Y0050BBK-WESN
$78.99
Seagate ST8000NM0045 8TB 7.2k SATA 6Gbps 3.5" 4Kn Format Hard Drive Open Box New
$84.99