Tor browser installation hangs on verifying signature

tor

The thing that hangs is gpg. Run ps -ef | grep gpg while tor is verifying signatures and see there's actually a gpg running.
Tor browser installer will run gpg --refresh-keys anyways, so (from here)

Because of some jerk on the internet poisoning PGP keys, downloading and using the TB developers' poisoned key will take forever

But we don't need to follow the link to cure the gpg db, as it has another home directory. We just need to download and install the 'poisoned' key safely.
This thing is implemented in gpg 2.2.17 and later versions. So you need to /usr/bin/gpg --version and update gpg if it's older than 2.2.17.
The update process is rather simple, too: get to this git gist, load the script, replace 2.2.10 with 2.2.17 within the script and run download, compilation and make.
Maybe you should copy /usr/local/bin/gpg* over /usr/bin/gpg* after it.
Enjoy ) 

gpg (GnuPG) 2.2.17
libgcrypt 1.8.3
Copyright (C) 2019 Free Software Foundation, Inc.

Related

Kill process tree using terminal?
Does Ubuntu Touch have WebGL support?
Can I run ubuntu with VMware?
Search results in Unity are always empty [duplicate]
Mythmote wont connect to mythbuntu 12.04, seems frontend is not listening on all interfaces
WiFi isn't working in new installation of Ubuntu [duplicate]
Upgrade from MaaS 2.6.2 to MaaS 2.7
Deluge is not connecting to daemon on server despite working from another machine
How to force a higher screen resolution from Ubuntu 12.04 and an NVidia GTX460?
Map "Super+ArrowDown" to minimize a window while the window is focused & the window is not in fullscreen
Can I use elementary's workspace switcher in Ubuntu?
How to fix missing libwayland-egl.so.1 and libuser-accounts.so in ubuntu 14.04.3 LTS?