Does anyone know where to find the ISC signing keys for source packages?
Thomas Schulz
schulz at adi.com
Tue Dec 28 21:37:40 UTC 2010
>
> At Tue, 28 Dec 2010 15:50:23 -0500 (EST), Thomas Schulz wrote:
> >
> > It looks like I am a little dim today. Given gpg and the key, what steps
> > do I do to verify a source package?
>
> General case:
>
> $ gpg --verify sigfile tarball
>
> Eg:
>
> $ gpg --verify bind-9.7.2-P3.tar.gz.sha256.asc bind-9.7.2-P3.tar.gz
>
> We probably should add this to the aforementioned web page.
It looks like I have to somehow make the public key available. When I
issue the above command I get:
gpg: Can't check signature: public key not found
Tom Schulz
Applied Dynamics Intl.
schulz at adi.com
More information about the bind-users
mailing list