From owner-freebsd-security Fri Mar 21 5:29:24 2003 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C725437B401 for ; Fri, 21 Mar 2003 05:29:21 -0800 (PST) Received: from meitner.wh.uni-dortmund.de (meitner.wh.Uni-Dortmund.DE [129.217.129.133]) by mx1.FreeBSD.org (Postfix) with ESMTP id CD91F43F75 for ; Fri, 21 Mar 2003 05:29:20 -0800 (PST) (envelope-from michaelnottebrock@gmx.net) Received: from lofi.dyndns.org (pc2-105.intern.meitner [10.3.12.105]) by meitner.wh.uni-dortmund.de (Postfix) with ESMTP id E4E921675DA; Fri, 21 Mar 2003 13:27:43 +0100 (CET) Received: from kiste.my.domain (kiste.my.domain [192.168.8.4]) (authenticated bits=0) by lofi.dyndns.org (8.12.6/8.12.6) with ESMTP id h2LDT5be025945 (version=TLSv1/SSLv3 cipher=RC4-MD5 bits=128 verify=NO); Fri, 21 Mar 2003 14:29:18 +0100 (CET) (envelope-from michaelnottebrock@gmx.net) From: Michael Nottebrock To: budsz , FreeBSD-Security Subject: Re: About *.asc Date: Fri, 21 Mar 2003 14:29:00 +0100 User-Agent: KMail/1.5 References: <20030321081451.GA13163@kumprang.or.id> In-Reply-To: <20030321081451.GA13163@kumprang.or.id> MIME-Version: 1.0 Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg=pgp-sha1; boundary="Boundary-02=_gOxe+5FOwC+6QaN"; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <200303211429.04872.michaelnottebrock@gmx.net> X-Virus-Scanned: by amavisd-new Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --Boundary-02=_gOxe+5FOwC+6QaN Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Description: signed data Content-Disposition: inline On Friday 21 March 2003 09:14, budsz wrote: > Hi, > > I was search in web resource about this problem, mailing list etc, today > I get some advisory from FreeBSD security about trouble, so I try to veri= fy > the *asc: > > $ gpg --verify xdr-5.patch.asc > > $ gpg --verify xdr-5.patch.asc > gpg: Signature made Thu Mar 20 08:10:01 2003 WIT using DSA key ID > CA6CDFB2 > gpg: Good signature from "FreeBSD Security Officer > " gpg: WARNING: This key is not certified > with a trusted signature! > gpg: There is no indication that the signature belongs to the > owner. > Primary key fingerprint: C374 0FC5 69A6 FBB1 4AED B131 15D6 8804 CA6C > DFB2 > > What happen about warning message, Would you give me some clue pls. The warning message simply indicates that neither you nor anyone who you tr= ust=20 to make reliable signatures has signed (your local copy of) the key. If you= =20 want to trust this key, i.e. you believe that this key really belongs to th= e=20 real freebsd security officer, you need to sign or locally sign (lsign) it.= =20 Read all about the secrets of gnupg and pgp at=20 http://www.gnupg.org/documentation/guides.html. =2D-=20 Regards, Michael Nottebrock --Boundary-02=_gOxe+5FOwC+6QaN Content-Type: application/pgp-signature Content-Description: signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQA+exOgXhc68WspdLARAgakAJ9tTzxyHrWBIb9Ab8wts2rnLxStIwCfWx73 tyu7FXt82YdPItKsT8nAy7o= =zu6y -----END PGP SIGNATURE----- --Boundary-02=_gOxe+5FOwC+6QaN-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message