on Wed, May 09, 2001 at 12:28:33PM +0700, Oki DZ ([EMAIL PROTECTED]) wrote:
> Hi,
>
> Recently I tried to verify the source from www.linux.org, but I had the
> following:
> [EMAIL PROTECTED]:~$ gpg --verify linux-2.4.4.tar.bz2.sign linux-2.4.4.tar.bz2
> gpg: Signature made Sat Apr 28 08:48:08 2001
> gpg: Good signature from "Linux Kernel Archives Verification Key
> <[EMAIL PROTECTED]>"
this means the signature matches the key. if you trust that the place
you got the key from is secure and the key hasn't been compromised, then
you can trust that the source is good.
> Could not find a vali
Forgot to reply to the 2nd part of the mail, so here goes:
On Wed, May 09, 2001 at 12:28:33PM +0700, Oki DZ wrote:
> Hi,
>
> Recently I tried to verify the source from www.linux.org, but I had the
> following:
>
> BTW, for verification of originality of the tarball, wouldn't it be
> easier usin
On Wed, May 09, 2001 at 12:28:33PM +0700, Oki DZ wrote:
> Hi,
>
> Recently I tried to verify the source from www.linux.org, but I had the
> following:
> [EMAIL PROTECTED]:~$ gpg --verify linux-2.4.4.tar.bz2.sign linux-2.4.4.tar.bz2
> gpg: Signature made Sat Apr 28 08:48:08 2001 JAVT using DSA key
Hi,
Recently I tried to verify the source from www.linux.org, but I had the
following:
[EMAIL PROTECTED]:~$ gpg --verify linux-2.4.4.tar.bz2.sign linux-2.4.4.tar.bz2
gpg: Signature made Sat Apr 28 08:48:08 2001 JAVT using DSA key ID
517D0F0E
gpg: Good signature from "Linux Kernel Archives Verifica
5 matches
Mail list logo
