• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Issue Weak Algorithm Warning (DSA1024) for Plesk Repositories on Ubuntu 24.04 LTS

LionKing

LionKing

Regular Pleskian
Server operating system version
Ubuntu 24.04 LTS
Plesk version and microupdate number
Plesk Obsidian 18.0.67 Update #3 Web Host Edition
Hi Plesk Support Team and Community,
I’m running into an issue with the Plesk repositories on my Ubuntu 24.04 LTS server and would appreciate some guidance.

When I run sudo apt update, I get warnings about the Plesk repositories using a weak algorithm (DSA1024) for their signatures. The affected repositories include those for Plesk itself and several PHP versions (e.g., PHP 7.4, 8.0, 8.1, 8.2). The warning message indicates that the key used to sign these repositories is considered cryptographically weak by modern standards.

I tried to fetch an updated key from a keyserver using apt-key adv, but I received an error that the key ID was not found. I also learned that apt-key is deprecated in Ubuntu 24.04, and the recommended method is to manage keys in /etc/apt/trusted.gpg.d/. However, even if I were to add the key manually, the weak algorithm issue would likely persist.

Here’s what I’ve done so far:
  1. Ran sudo apt update and noted the weak algorithm warnings for the Plesk repositories.
  2. Attempted to fetch the key using apt-key adv --keyserver keyserver.ubuntu.com --recv-keys with the key ID, but it failed with a "not a key ID: skipping" error.
  3. Considered adding the key manually to /etc/apt/trusted.gpg.d/, but I’m concerned that the underlying issue (weak DSA1024 algorithm) would still remain.
My questions are:
  • Has Plesk updated its repository signing keys to use a stronger algorithm (e.g., RSA-2048 or ECDSA)? If so, where can I find the new key and instructions to add it?
  • If not, are there plans to update the keys soon? The weak algorithm warning is a security concern, and I’d like to ensure my server remains secure.
  • Are there alternative repositories or mirrors that use updated keys?
  • How do I run an actual update of this and fix the issue on the Ubuntu 24.04 LTS server?
I’d really appreciate any help or updates from the Plesk team or community members who have encountered and resolved this issue. Thanks in advance for your assistance!

Best regards,

LionKing
 
No they don't actually. The old Repositories just keeps being there and been there for a while now hence the post here.
 
So do anyone have an idea of how to fix this?

Here is a detailed screenshot of how it looks like:
1742998921555.png
 
@LionKing our team is already working on updating the signing key. The case is currently in the testing phase and the fix should be released in the upcoming days.
 
You must log in or register to reply here.

Similar threads

Daveo
Issue Ubuntu upgrade from 22.04 to 24.04 getting issue with key algorithms
Replies
2
Views
454
Daveo
Daveo
J
Resolved PUM error persists....
Replies
13
Views
884
Jeroentje
J
K
Resolved Apt update warning weak algorithm (dsa1024)
Replies
5
Views
2K
Sebahat.hadzhi
Sebahat.hadzhi
W
Issue Atomicorp repository - Debian 11 - NO_PUBKEY
Replies
2
Views
361
websb
W
learning_curve
Resolved Plesk Updates - Expected in 18.0.65 - Now Overdue
Replies
15
Views
2K
Sebahat.hadzhi
Sebahat.hadzhi
Back
Top