Updating Your NGINX PGP Key on Debian/Ubuntu
If you’ve previously followed our guide on installing NGINX, it’s important to note that the NGINX PGP key has been updated. To maintain the security and integrity of your NGINX installation, you’ll need to update your PGP key. In this post, we’ll walk you through the necessary steps for Debian and Ubuntu systems.
Updating Your PGP Key on Debian/Ubuntu
1. Download and Overwrite the Old Key
Open your terminal and run the following command to download the new PGP key and overwrite the old one:
curl https://nginx.org/keys/nginx_signing.key | gpg --dearmor | tee /etc/apt/trusted.gpg.d/nginx.gpg > /dev/null
2. Verify the New Key
To ensure the new key has been correctly imported and to check its expiration date, run:
gpg --dry-run --quiet --no-keyring --import --import-options import-show /etc/apt/trusted.gpg.d/nginx.gpg
By following these steps, you can successfully update your PGP key and maintain the security of your NGINX installation on Debian and Ubuntu systems.