Can't check pgp-6.5.8 signatura
Andreas Hasenack
andreas@conectiva.com.br
Wed Oct 17 14:46:01 2001
Em Tue, Oct 16, 2001 at 06:45:08PM -0400, Anthony E. Greene escreveu:
> I was able to verify the sig with PGP. Here is the output from gpg -vv:
>
> [agreene@cp5340 tmp]$ gpg -vvv telnetd_122_patch.txt.asc
> gpg: armor: BEGIN PGP SIGNATURE
> gpg: armor header: Version: PGP 6.5.8
> :signature packet: algo 1, keyid A6C3804FF376813D
> version 3, created 996544575, md5len 5, sigclass 01
> digest algo 1, begin of digest 74 13
> data: [1022 bits]
> gpg: loaded digest 1
> gpg: assuming signed data in `telnetd_122_patch.txt'
> gpg: Signature made Mon 30 Jul 2001 09:56:15 PM EDT using RSA key ID
> F376813D
> gpg: loaded digest 2
> gpg: BAD signature from "Tom Yu <tlyu@MIT.EDU>"
^^^^^^^^^^^^^
Looks to me that you did NOT verify the signature... :)
Maybe I wasn't clear... GnuPG is reading it and checking it indeed, I
just wanted to confirm that the BAD signature is really, well, BAD, and
not just some interoperability problem between PGP and GnuPG.