Commit 5a44cfe2 authored by ale's avatar ale

Fix Debian package installation instructions

This tries to conform with:

We also change keyservers to avoid signature flooding
attacks. Ideally, the repository would ship its own key, to avoid
writing that key in the user's keyring, but this fixes the worst of
the problems (short key ID attacks and flooding).
parent 28430343
Pipeline #4596 failed with stages
in 16 seconds
......@@ -21,17 +21,16 @@ option, you can build the software from source.
Add this line to your `sources.list`:
deb liber/
deb [signed-by=/usr/share/keyrings/incal-archive-keyring.gpg] liber/
Then make sure the GPG key used to sign the repository is installed,
update the package sources, and install the `liber` package:
$ sudo apt-key adv --keyserver hkp:// \
--recv C0EAC2F9CE9ED9B0
$ gpg --keyserver hkp:// --recv 06F524BFE221CD1F65DF57F5C0EAC2F9CE9ED9B0
$ gpg --export --export-options export-minimal 06F524BFE221CD1F65DF57F5C0EAC2F9CE9ED9B0 | sudo tee /usr/share/keyrings/incal-archive-keyring.gpg > /dev/null
$ sudo apt-get update
$ sudo apt-get install liber
### Build from source
To compile liber from source, you will need a working [Go](
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment