Ich bekam heute folgende Fehlermeldung:
Signature verification failed for file 'repomd.xml' from repository 'Main Update Repository'.
Code
linux:~ # zypper up
Retrieving repository 'Packman Repository' metadata ................................................................................................................................................[done]
Building repository 'Packman Repository' cache .....................................................................................................................................................[done]
Retrieving repository 'Main Update Repository' metadata -----------------------------------------------------------------------------------------------------------------------------------------------[/]
Signature verification failed for file 'repomd.xml' from repository 'Main Update Repository'.
Note: Signing data enables the recipient to verify that no modifications occurred after the data
were signed. Accepting data with no, wrong or unknown signature can lead to a corrupted system
and in extreme cases even to a system compromise.
Note: File 'repomd.xml' is the repositories master index file. It ensures the integrity of the
whole repo.
Warning: This file was modified after it has been signed. This may have been a malicious change,
so it might not be trustworthy anymore! You should not continue unless you know it's safe.
Signature verification failed for file 'repomd.xml' from repository 'Main Update Repository'. Continue? [yes/no] (no): nWas ist nun zu tun?
Mein erster Gedanke ist, das "Main Update Repository" mit yast zu löschen und sofort wieder neu hinzufügen.
Laut Fehlermeldung ist die Signatur defekt und durch das neu hinzufügen wird ja wieder eine neue Signatur hinzugefügt.
Kann und sollte ich so vorgehen oder hab ich da einen Gedanken-Fehler drin?
