On 22 Nov 2002, Steve Langasek <[EMAIL PROTECTED]> wrote:
> On Fri, Nov 22, 2002 at 03:16:09PM -0600, David W. Chapman Jr. wrote:
> > On Fri, Nov 22, 2002 at 01:08:39PM -0800, Martin Pool wrote:
> > > Yeah, sure, but:
>
> > > What does this all mean? Why should I care?
>
> > > Where do I get G
On Fri, Nov 22, 2002 at 02:31:21PM -0800, Martin Pool wrote:
> According to samba.html, the distribution key is
> http://us1.samba.org/samba/ftp/samba-pubkey.asc
> gpg: key 2F87AF6F: public key "Samba Distribution Verification Key
><[EMAIL PROTECTED]>"
Then perhaps this should be refreshed
Incidentally, this form is pretty useful when trying to establish the
validity of a key. It would be nice if it were available from a GUI.
gpg --list-sig A0B3E88B|awk '/id not found/ { print $2 }' |sort -u |xargs gpg
--recv-key
--
Martin
msg04563/pgp0.pgp
Description: PGP signature
On 22 Nov 2002, Steve Langasek <[EMAIL PROTECTED]> wrote:
> Hmm. I see nine signatures already, and I have a full trust relationship
> to the key which traverses multiple paths through the keyring, the
> shortest of which is only three hops long, despite never having met a
> member of the Samba T
On Sat, Nov 23, 2002 at 08:29:57AM +1100, Tim Potter wrote:
> On Fri, Nov 22, 2002 at 03:16:09PM -0600, David W. Chapman Jr. wrote:
> > > Where do I get the samba codesigning key? How do I import it? How
> > > do I know I got the right one?
> > >
> > > What do I do if it doesn't verify?
>
On Fri, Nov 22, 2002 at 03:16:09PM -0600, David W. Chapman Jr. wrote:
> On Fri, Nov 22, 2002 at 01:08:39PM -0800, Martin Pool wrote:
> > Yeah, sure, but:
> > What does this all mean? Why should I care?
> > Where do I get GPG?
> > Where do I get the samba codesigning key? How do I import it?
On Fri, Nov 22, 2002 at 03:16:09PM -0600, David W. Chapman Jr. wrote:
> > Where do I get the samba codesigning key? How do I import it? How
> > do I know I got the right one?
> >
> > What do I do if it doesn't verify?
>
> I always wondered if someone uploaded a tarball with a trojan, what'
On 22 Nov 2002, Martin Pool <[EMAIL PROTECTED]> wrote:
> On 22 Nov 2002, Steve Langasek <[EMAIL PROTECTED]> wrote:
> > On Fri, Nov 22, 2002 at 12:56:39PM -0800, Martin Pool wrote:
> > > I'll write up a short page describing how to use them, unless Jerry
> > > particularly wants to do it.
> >
> > I
On Fri, Nov 22, 2002 at 01:08:39PM -0800, Martin Pool wrote:
> Yeah, sure, but:
>
> What does this all mean? Why should I care?
>
> Where do I get GPG?
>
> Where do I get the samba codesigning key? How do I import it? How
> do I know I got the right one?
>
> What do I do if it doesn't
On 22 Nov 2002, Steve Langasek <[EMAIL PROTECTED]> wrote:
> On Fri, Nov 22, 2002 at 12:56:39PM -0800, Martin Pool wrote:
> > I'll write up a short page describing how to use them, unless Jerry
> > particularly wants to do it.
>
> In five words or less, from the gpg manpage:
>
> $ gpg --verify sam
On Fri, Nov 22, 2002 at 12:56:39PM -0800, Martin Pool wrote:
> I'll write up a short page describing how to use them, unless Jerry
> particularly wants to do it.
In five words or less, from the gpg manpage:
$ gpg --verify samba-2.2.7.tar.gz.asc samba-2.2.7.tar.gz
--
Steve Langasek
postmodern pr
I'll write up a short page describing how to use them, unless Jerry
particularly wants to do it.
- Forwarded message from [EMAIL PROTECTED] -
From: [EMAIL PROTECTED]
Subject: Suggestion: describe (or link to) how to verify your distributions
Date: Fri, 22 Nov 2002 20:21:38 GMT
To: [EMAIL
12 matches
Mail list logo