Signature by key C47415DFF48C09645B78609416126D3A3E5C1192 uses weak digest algorithm (SHA1)

Question

Fetched 111 kB in 2s (41.4 kB/s)
Reading package lists... Done
W: http://extras.ubuntu.com/ubuntu/dists/precise/Release.gpg: Signature by key C47415DFF48C09645B78609416126D3A3E5C1192 uses weak digest algorithm (SHA1)
W: http://archive.canonical.com/ubuntu/dists/precise/Release.gpg: Signature by key 630239CC130E1A7FD81A27B140976EAF437D05B5 uses weak digest algorithm (SHA1)

root@chikki:/home/dharani#

While updating using sudo apt-get update, I can see some warnings as shown above (6 warnings). I have searched a lot but could not find the solution.

I have also downloaded the Release.gpg file and it contains some binary data. Please help me in getting rid of this warning.

heynnema · Answer 1 · 2017-05-18T18:58:02.470

2

Those warning messages can just be ignored. All repositories used to use SHA1 signatures, but it was found that SHA1 had problems, and they're converting over to SHA256 type of signature. Not all repositories have completed that transition.

If somebody can provide more technical details, please chime in.

edited May 18 '17 at 18:58

answered May 18 '17 at 18:33

heynnema

73,649

Signature by key C47415DFF48C09645B78609416126D3A3E5C1192 uses weak digest algorithm (SHA1)

1 Answers1