It's probably worth noting that your PGP signature for new Samba 2.2.7a *FAILS* verification (on both bzip2 and gzip'd files). The problem is not in the signature itself, but the filename:
$ wget http://us1.samba.org/samba/ftp/samba-2.2.7a.tar.gz $ wget http://us1.samba.org/samba/ftp/samba-2.2.7a_tar_gz.asc $ gpg --verify samba-2.2.7a_tar_gz.asc gpg: no signed data gpg: can't hash datafile: file open error However: $ mv samba-2.2.7a_tar_gz.asc samba-2.2.7a.tar.gz.asc $ gpg --verify samba-2.2.7a.tar.gz.asc gpg: Signature made Wed Dec 11 07:38:39 2002 PST using DSA key ID 2F87AF6F gpg: Good signature from "Samba Distribution Verification Key <[EMAIL PROTECTED]>" This was tested using GnuPG 1.2.1 on bash 2.05a. Regards, - David Lechnyr