I'm using a Windows 7 Pro machine to download the TAILS ISO and the sig, then verify it with gpg4win version 2.2.4. using the latest signing key.
Per https://tails.boum.org/install/download/openpgp/index.en.html I imported the TAILS Signing Key. I can't certify or change it to full trust ... as the error shows the Certificate is Expired. I look further and find that this cert in the chain is expired: 54D7834DDB6C364C 1/12/16. About three more will be expiring before the end of the year. Also, one of the sub keys is revoked/expired: AA9E014656987A65. Are there any plans to remove and/or replace the expired/revoked certs so that users can truly verify the distribution? The reason is ask is that when I try to verify the ISO, I get this error back: "Signed on 2016-11-13 09:08 with unknown certificate 0x79192EE220449071F589AC00AF292B44A0EDAA41. The validity of the signature cannot be verified." The cert in this error does not match the one in the document, located at: https://tails.boum.org/install/download/openpgp/index.en.html "Signed on ... by [email protected] (Key ID: 0x58ACD84F" I have been downloading and verifying TAILS since version 1.2 (if I remember right), and I have only had this problem with the most recent releases. Thanks for your help, and all that you folks do. Nick
_______________________________________________ tails-support mailing list [email protected] https://mailman.boum.org/listinfo/tails-support To unsubscribe from this list, send an empty email to [email protected].
