Hi folks,
Has anyone else been receiving the following warning when checking for updates on Linux systems with the Rapid Recovery agent installed?
W: s3.amazonaws.com/.../InRelease: Signature by key 98B066A163C839F04EFCB354E1CF64095C605D2B uses weak digest algorithm (SHA1)
From what I can tell, the 6.x version of the RR agent for Dublin/Ubuntu Linux has improved packaging to make use of the OSs built in package management features. This is awesome... except they don't seem to have quite gone all the way. Every time I check for updates I receive this warning that RR is using a weak digest. So I'm just doing my civic duty and making sure that the maintainers are aware.
We best be careful, right now it's a warning... with the next release of apt they might drop support for weak digests all together.
System specs:
OS: Ubuntu 16.04.2 LTS
Rapid Recovery Version: 6.0.2.114