Received: from malur.postgresql.org ([217.196.149.56])
	by arkaria.postgresql.org with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.94.2)
	(envelope-from <pgsql-general-owner+archive@lists.postgresql.org>)
	id 1rvEO3-00AcKc-Dg
	for pgsql-general@arkaria.postgresql.org; Fri, 12 Apr 2024 10:44:04 +0000
Received: from localhost ([127.0.0.1] helo=malur.postgresql.org)
	by malur.postgresql.org with esmtp (Exim 4.94.2)
	(envelope-from <pgsql-general-owner+archive@lists.postgresql.org>)
	id 1rvEO1-00CdsK-JS
	for pgsql-general@arkaria.postgresql.org; Fri, 12 Apr 2024 10:44:01 +0000
Received: from magus.postgresql.org ([2a02:c0:301:0:ffff::29])
	by malur.postgresql.org with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.94.2)
	(envelope-from <n5d9xq3ti233xiyif2vp@protonmail.ch>)
	id 1rvEO1-00CdsC-7d
	for pgsql-general@lists.postgresql.org; Fri, 12 Apr 2024 10:44:01 +0000
Received: from mail-40131.protonmail.ch ([185.70.40.131])
	by magus.postgresql.org with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.94.2)
	(envelope-from <n5d9xq3ti233xiyif2vp@protonmail.ch>)
	id 1rvENy-000XEQ-85
	for pgsql-general@lists.postgresql.org; Fri, 12 Apr 2024 10:44:00 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.ch;
	s=protonmail3; t=1712918636; x=1713177836;
	bh=r53eWvMdrkgkTkODNbDmpKidmL0M/aO8+/EzswZIXxI=;
	h=Date:To:From:Subject:Message-ID:Feedback-ID:From:To:Cc:Date:
	 Subject:Reply-To:Feedback-ID:Message-ID:BIMI-Selector;
	b=LFoHnBTpDUjwmlKZAELEC8LvvOl3UzfxMmimSmWp5CjEstGUrjg2L1viDSHo0H/Mu
	 Lny3iwWwDmw6RbFO0L7w7Wk2TsuFIDEOc9KdP2/nqvuImeT7Cr4WTqzr/vTrLzfuqC
	 3GeiJOOfh3ClK6jWBCj5ySr8iGDHFGkTZyLDmW97l7TBBmF5lY7mw2e5MU86nAS7Qs
	 0Tl2sVpdxZV1p0qxnfJ62GPjyzNdQ1GKq5F427BOQctvh+8I2GUugL3qPjmJ1UVgnU
	 dWhO9wW6ZfuboWOxxK0jbEfvHplqUXriMjP+HEazu3KkqoWoMQHZCrtAKKr6hnjhp7
	 /60aUo9M9zFGw==
Date: Fri, 12 Apr 2024 10:43:52 +0000
To: postgre <pgsql-general@lists.postgresql.org>
From: Laura Smith <n5d9xq3ti233xiyif2vp@protonmail.ch>
Subject: Obsolete Linux downloads (Debian) instructions
Message-ID: <t302wUcbygPnZ0Kg1Kbxbe9K6iKcK47rpXQhZvOwBPJ1jn-qTOG4V2bFIIrr7bSXtvjC8vCSPLsvkBNSVqM2pU8I5xyWc86DOkGf17AxXK4=@protonmail.ch>
Feedback-ID: 9341368:user:proton
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
List-Id: <pgsql-general.lists.postgresql.org>
List-Help: <https://lists.postgresql.org/manage/>
List-Subscribe: <https://lists.postgresql.org/manage/>
List-Post: <mailto:pgsql-general@lists.postgresql.org>
List-Owner: <mailto:pgsql-general-owner@lists.postgresql.org>
List-Archive: <https://www.postgresql.org/list/pgsql-general>
Archived-At: <https://www.postgresql.org/message-id/t302wUcbygPnZ0Kg1Kbxbe9K6iKcK47rpXQhZvOwBPJ1jn-qTOG4V2bFIIrr7bSXtvjC8vCSPLsvkBNSVqM2pU8I5xyWc86DOkGf17AxXK4%3D%40protonmail.ch>
Precedence: bulk

Hi

Who do I have to badger to get the obsolete and frankly dangerous Debian re=
po instructions fixed @ https://www.postgresql.org/download/linux/debian/=
=C2=A0?=C2=A0

The manner proposed is really "not the done thing" in 2024 and it has been =
explicitly obsoleted by Debian so the project really should not be promotin=
g it as a supported manner to do things.

TL;DR: You should not be using blindly trusting keys for all repos (which i=
s what=C2=A0apt-key add does).=C2=A0 See :=C2=A0https://wiki.debian.org/Deb=
ianRepository/UseThirdParty


Something like this is the way it should be done:


# Install GPG Certcurl -fsSL "https://www.postgresql.org/media/keys/ACCC4CF=
8.asc" \
=C2=A0 =C2=A0 | gpg --dearmor \
=C2=A0 =C2=A0 | sudo sponge /etc/apt/keyrings/postgresql.gpg
#=C2=A0Create source list file
. /etc/os-release
echo "deb [signed-by=3D/etc/apt/keyrings/postgresql.gpg] https://apt.postgr=
esql.org/pub/repos/apt ${VERSION_CODENAME}-pgdg main" \
=C2=A0 =C2=A0 | doas sponge /etc/apt/sources.list.d/postgresql.list
## Install
doas apt-get update && apt-get -y install postgresql