Ubuntu to Reject SHA-1-Signed Repos by Default in APT Starting January 1, 2017 | Linux Today

Ubuntu to Reject SHA-1-Signed Repos by Default in APT Starting January 1, 2017

Written By
MN
Marius Nestor
Nov 23, 2016

As you might know, or not, the long-awaited deprecation of the SHA-1 (Secure Hash Algorithm 1) encryption, which is used to verify digital content, CRLs (certificate revocation lists), and digital certificates, is set for the first day of January 2017 worldwide, which might affect you browser the Internet. But by SHA-1 encryption is also used to sign the APT (Advanced Package Tool) repositories of Debian-based operating systems, including the popular Ubuntu and Linux Mint, and it looks like these SHA-1-signed repos will be automatically rejected by APT in Ubuntu 16.04 LTS (Xenial Xerus) and Ubuntu 16.10 (Yakkety Yak).

MN

Marius Nestor

Linux Today Logo

LinuxToday is a trusted, contributor-driven news resource supporting all types of Linux users. Our thriving international community engages with us through social media and frequent content contributions aimed at solving problems ranging from personal computing to enterprise-level IT operations. LinuxToday serves as a home for a community that struggles to find comparable information elsewhere on the web.

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.