It means that gpg can not verify that the "Linux Kernel Archives
Verification Key" is what it says it is; the tarball has been signed
with that key, but there is no assurance that both the key and tarball
haven't been modified. What it boils down to is whether or not you
trust that the key you hav
Hi,
I've search the mailing list archives and couldn't find
the answer so I'm trying here hoping someone could
help.
When I run:
gpg --verify linux-2.3.41.tar.bz2.sign linux-2.3.41.tar.bz2
I get this result:
gpg: Signature made Sat Jan 29 10:18:19 2000 EST using DSA key ID 1E1A8782
gpg: Good sig
2 matches
Mail list logo