Date: Sun, 29 Jul 2001 03:01:46 -0700 From: Kris Kennaway <kris@obsecurity.org> To: User & Ian Patrick Thomas <ipthomas_77@yahoo.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: pgp and the telnetd patch Message-ID: <20010729030145.B85101@xor.obsecurity.org> In-Reply-To: <20010728201301.A5317@localhost>; from ipthomas_77@yahoo.com on Sat, Jul 28, 2001 at 08:13:01PM -0400 References: <20010728201301.A5317@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] On Sat, Jul 28, 2001 at 08:13:01PM -0400, User & Ian Patrick Thomas wrote: > After downloading the patch from ftp.freebsd.org I ran the following > command to check the pgp signature. > > pgpv -m > > I get the following message > > Signature by unknown keyid: 0x73D288A5 > > How do I know this key is right? I'm new to pgp so the answer may be > right in front of me. Is there some way I can cross reference this key > with an authoritative reference? The key is available from the FTP site (linked to from the security webpage) or the public keyservers. How much you trust that that key actually belongs to the security officer is up to you to determine through the available data (PGP web of trust, references to the fingerprint in locations you consider authoritative, etc). Kris [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE7Y98JWry0BWjoQKURAkMKAJ0VZXRnZIIpKJGSyMzJOeI2hpVAaQCg4Mov vKSzT1FVJHQ+YRI0eeWLIQE= =50m9 -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010729030145.B85101>