I'm trying to verify a signature on GPG-encrypted file. But it always shows some mysterious problem:
$ gpg --symmetric --sign backup.tar.7z You need a passphrase to unlock the secret key for user: "..." 2048-bit RSA key, ID 3E36230B, created 2012-08-13 gpg: CAST5 encryption will be used $ gpg --verify backup.tar.7z.gpg gpg: verify signatures failed: Unexpected error $ gpg backup.tar.7z.gpg gpg: CAST5 encrypted data gpg: encrypted with 1 passphrase gpg: Signature made Sun 19 May 2013 14:27:22 MSK using RSA key ID 3E36230B gpg: Good signature from "..." gpg: WARNING: message was not integrity protected
According to the manpage, --verify should work also for integrated signatures, while it does not. Using plain decrypt is not an option as the encrypted file is very large.
What am I doing wrong?