You are not logged in.
Hello everyone,
I'll be using a linux kernel download as an example (This assumes you have the download and the
signature file.
For people who want to verify downloads with gpg, people probably are going to do:
$ gpg --verify linux-3.1.5.tar.sign
Output:
gpg: Signature made Fri 09 Dec 2011 12:16:46 PM EST using RSA key ID 6092693E
gpg: Can't check signature: public key not found
If anyone is having a problem like this after typing:
$ gpg --recv-keys 6092693E
Output:
gpg: no keyserver known (use option --keyserver)
gpg: keyserver receive failed: Syntax error in URI
Try:
$ gpg --keyserver subkeys.pgp.net --recv-keys 6092693E
Output:
gpg: requesting key 6092693E from hkp server subkeys.pgp.net
gpg: key 6092693E: "Greg Kroah-Hartman (Linux kernel stable release signing key) <greg@kroah.com>" not changed
gpg: Total number processed: 1
gpg: unchanged: 1
Then try:
$ gpg --verify linux-3.1.5.tar.sign
Output:
gpg: requesting key 6092693E from hkp server subkeys.pgp.net
gpg: key 6092693E: public key "Greg Kroah-Hartman
(Linux kernel stable release signing key) <greg@kroah.com>" imported
gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model
gpg: depth: 0 valid: 3 signed: 1 trust: 0-, 0q, 0n, 0m, 0f, 3u
gpg: depth: 1 valid: 1 signed: 0 trust: 0-, 0q, 0n, 0m, 1f, 0u
gpg: Total number processed: 1
gpg: imported: 1 (RSA: 1)
Note that subkeys.pgp.net may not work, so if this solution doesn't work, replace subkeys.pgp.net with whatever that works.
Offline
edit:nvm
Last edited by jwele (2012-07-17 21:17:48)
Offline