Debian 软件仓库镜像使用帮助

选择镜像

大部分 Debian 的软件源配置文件使用传统的 One-Line-Style,路径为 /etc/apt/sources.list;但是对于容器镜像,从 Debian 12 开始,其软件源配置文件变更为 DEB822 格式,路径为 /etc/apt/sources.list.d/debian.sources。一般情况下,将对应文件中 Debian 默认的源地址 http://deb.debian.org/ 替换为镜像地址即可。

Debian Buster 以上版本默认支持 HTTPS 源。如果遇到无法拉取 HTTPS 源的情况,请先使用 HTTP 源并安装:

sudo apt install apt-transport-https ca-certificates

传统格式(/etc/apt/sources.list):

Debian 版本
启用源码镜像
使用官方安全更新软件源
# 默认注释了源码镜像以提高 apt update 速度,如有需要可自行取消注释
deb https://(Loading...)/ bookworm main contrib non-free non-free-firmware
# deb-src https://(Loading...)/ bookworm main contrib non-free non-free-firmware

deb https://(Loading...)/ bookworm-updates main contrib non-free non-free-firmware
# deb-src https://(Loading...)/ bookworm-updates main contrib non-free non-free-firmware

deb https://(Loading...)/ bookworm-backports main contrib non-free non-free-firmware
# deb-src https://(Loading...)/ bookworm-backports main contrib non-free non-free-firmware

# 以下安全更新软件源包含了官方源与镜像站配置,如有需要可自行修改注释切换
# deb https://(Loading...)-security bookworm-security main contrib non-free non-free-firmware
# # deb-src https://(Loading...)-security bookworm-security main contrib non-free non-free-firmware

deb https://security.debian.org/debian-security bookworm-security main contrib non-free non-free-firmware
# deb-src https://security.debian.org/debian-security bookworm-security main contrib non-free non-free-firmware

DEB822 格式(/etc/apt/sources.list.d/debian.sources):

Debian 版本
启用源码镜像
使用官方安全更新软件源
Types: deb
URIs: https://(Loading...)
Suites: bookworm bookworm-updates bookworm-backports
Components: main contrib non-free non-free-firmware
Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg

# 默认注释了源码镜像以提高 apt update 速度,如有需要可自行取消注释
# Types: deb-src
# URIs: https://(Loading...)
# Suites: bookworm bookworm-updates bookworm-backports
# Components: main contrib non-free non-free-firmware
# Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg

# 以下安全更新软件源包含了官方源与镜像站配置,如有需要可自行修改注释切换
# Types: deb
# URIs: https://(Loading...)-security
# Suites: bookworm-security
# Components: main contrib non-free non-free-firmware
# Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg

# # Types: deb-src
# # URIs: https://(Loading...)-security
# # Suites: bookworm-security
# # Components: main contrib non-free non-free-firmware
# # Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg

Types: deb
URIs: http://security.debian.org/debian-security
Suites: bookworm-security
Components: main contrib non-free non-free-firmware
Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg

# Types: deb-src
# URIs: http://security.debian.org/debian-security
# Suites: bookworm-security
# Components: main contrib non-free non-free-firmware
# Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg

为了方便快速配置,此处一并附上了 debian-security 的配置。大部分镜像站会同时提供 debian-security,为了更准确的信息您可以前往 Debian Security 帮助 确认。

不过,一般来说,为了更及时地获得安全更新,不推荐使用镜像站安全更新软件源,因为镜像站往往有同步延迟。参考 https://www.debian.org/security/faq.en.html#mirror

The purpose of security.debian.org is to make security updates available as quickly and easily as possible.

Encouraging the use of unofficial mirrors would add extra complexity that is usually not needed and that can cause frustration if these mirrors are not kept up to date.

Connection reset by peer

在 apt 2.1.9 及以后的版本中,apt 的 HTTP Pipelining 特性与 Nginx 服务器疑似存在一定的不兼容问题,可能导致高带宽从镜像站下载大量软件包 (例如系统升级)时出现偶发的 Connection reset by peer 错误 (详见 Debian bug #973581)。

目前,用户可以通过关闭 HTTP Pipelining 特性解决此问题。 如果需要关闭,可以在使用 apt 命令时加上 -o Acquire::http::Pipeline-Depth=0 参数, 或使用以下命令将相关设置加入 apt 系统配置中:

echo "Acquire::http::Pipeline-Depth \"0\";" > /etc/apt/apt.conf.d/99nopipelining

OpenMediaVault

本节供 OpenMediaVault 帮助使用。

omv-env set OMV_APT_KERNEL_BACKPORTS_REPOSITORY_URL "https://(Loading...)"
omv-env set OMV_APT_SECURITY_REPOSITORY_URL "https://(Loading...)-security"

关于 debian-security 可以参考上文的说明。

这个页面的内容有问题?在 GitHub Issue 反馈

想完善这个页面?查看我们的贡献指南在 GitHub 上查看此页的源代码

本页面的全部内容在 CC BY-NC-SA 4.0 协议之条款下提供,附加条款亦可能应用。