> > At Tue, 28 Dec 2010 15:50:23 -0500 (EST), Thomas Schulz wrote: > > > > It looks like I am a little dim today. Given gpg and the key, what steps > > do I do to verify a source package? > > General case: > > $ gpg --verify sigfile tarball > > Eg: > > $ gpg --verify bind-9.7.2-P3.tar.gz.sha256.asc bind-9.7.2-P3.tar.gz > > We probably should add this to the aforementioned web page.
It looks like I have to somehow make the public key available. When I issue the above command I get: gpg: Can't check signature: public key not found Tom Schulz Applied Dynamics Intl. [email protected] _______________________________________________ bind-users mailing list [email protected] https://lists.isc.org/mailman/listinfo/bind-users
