This is the mail archive of the
cygwin-apps@cygwin.com
mailing list for the Cygwin project.
(key verification) Re: [ITP] libgcrypt-1.2.0-2
- From: Reini Urban <rurban at x-ray dot at>
- To: cygapps <cygwin-apps at cygwin dot com>
- Date: Thu, 30 Sep 2004 21:28:56 +0200
- Subject: (key verification) Re: [ITP] libgcrypt-1.2.0-2
- References: <415C4198.6030703@scytek.de>
Volker Quetschke schrieb:
As advertised, I would like to maintain the cygwin-port of the
libgcrypt library.
I know it's off-topic, but it might be useful, for the archives.
sig:
>PGP/GPG key (ID: 0x9F8A785D) available from wwwkeys.de.pgp.net
>key-fingerprint 550D F17E B082 A3E9 F913 9E53 3D35 C9BA 9F8A 785D
ok:
$ gpg --keyserver wwwkeys.de.pgp.net --search-keys 0x9F8A785D
select "1"
prints that it is imported.
$ LC_ALL=C ./libgcrypt-1.2.0-2.sh all
ORIGINAL PACKAGE signature follows:
gpg: Signature made Thu Apr 15 11:51:12 2004 GMT using DSA key ID 57548DCD
gpg: Can't check signature: public key not found
SCRIPT signature follows:
gpg: Signature made Thu Sep 30 17:53:09 2004 GMT using DSA key ID 9F8A785D
gpg: Good signature from "Volker Quetschke <volker.quetschke@aei.mpg.de>"
gpg: aka "Volker Quetschke <quetschke@mpq.mpg.de>"
gpg: aka "Volker Quetschke (ScyTek's Secrets)
<quetschke@scytek.de>"
gpg: WARNING: This key is not certified with a trusted signature!
gpg: There is no indication that the signature belongs to the
owner.
Primary key fingerprint: 550D F17E B082 A3E9 F913 9E53 3D35 C9BA 9F8A 785D
PATCH signature follows:
gpg: Signature made Thu Sep 30 19:05:03 2004 GMT using DSA key ID 9F8A785D
gpg: Good signature from "Volker Quetschke <volker.quetschke@aei.mpg.de>"
gpg: aka "Volker Quetschke <quetschke@mpq.mpg.de>"
gpg: aka "Volker Quetschke (ScyTek's Secrets)
<quetschke@scytek.de>"
gpg: WARNING: This key is not certified with a trusted signature!
gpg: There is no indication that the signature belongs to the
owner.
Primary key fingerprint: 550D F17E B082 A3E9 F913 9E53 3D35 C9BA 9F8A 785D
$ gpg --help|grep trust
$ LC_ALL=C gpg --trusted-key "0x9F8A785D"
gpg: `0x9F8A785D' is not a valid long keyID
$ gpg --trusted-key "550D F17E B082 A3E9 F913 9E53 3D35 C9BA 9F8A 785D"
$ gpg --trusted-key "Volker Quetschke <quetschke@mpq.mpg.de>"
giving up... must be something else.
$ LC_ALL=C gpg --sign-key "0x9F8A785D"
some questions ...
yes
save
quit
$ gpg --keyserver wwwkeys.de.pgp.net --send-key "0x9F8A785D"
$ LC_ALL=C ./libgcrypt-1.2.0-2.sh all
ORIGINAL PACKAGE signature follows:
gpg: Signature made Thu Apr 15 11:51:12 2004 GMT using DSA key ID 57548DCD
gpg: Can't check signature: public key not found
SCRIPT signature follows:
gpg: Signature made Thu Sep 30 17:53:09 2004 GMT using DSA key ID 9F8A785D
gpg: Good signature from "Volker Quetschke <volker.quetschke@aei.mpg.de>"