Can't verify key
Wed Feb 14 22:18:28 2001
Perhaps I should e-mail the author on this one, but since this
involves signatures, and the signature is a PGP signature, I thought
I'd at least start here.
I'm running GnuPG version 1.0.4 on Solaris. I want to verify the
signature file (quintuple-agent-1.0.0.tar.gz.sig) for the new
quintuple agent (replaces secret-agent) gzip tarball file
(quintuple-agent-1.0.0.tar.gz) available from:
but I receive the following message:
gpg --verify quintuple-agent-1.0.0.tar.gz.sig
gpg: Warning: using insecure memory!
gpg: Signature made Mon Feb 12 15:44:19 2001 EST using DSA key ID BC185AB3
gpg: Can't check signature: public key not found
I found the author's (Robert Bihlmeyer) public key (see below) from:
I have no way to verify its validity, but I gotta start
somewhere. Anyway, I copied and pasted it to a file named 'robbe.key'
and then imported as:
gpg --import robbe.key
Key imports fine, but the above error is generated. Additionally, just
laughs, I also imported this into my PGP keyring (ver. 5.0), and it
generates the following error when verifying:
This signature applies to another message
File to check signature against [quintuple-agent-1.0.0.tar.gz]:
Signature by unknown keyid: 0xBC185AB3
1. I realize this is a PGP signature, but can GnuPG 1.0.4 handle this,
and if not, what can I do?
2. If the public key I found is wrong, does anyone have the correct one?
3. If GnuPG can't work with this, and my version of PGP (5.0) won't,
does anyone have a checksum for the gzipped tarball that
they could provide to me as an additional corroborating piece of
evidence to ensure I have the right *untainted* file. Yes, I can
e-mail the author, but I'd like to have tertiary confirmation.
George Sinclair } email@example.com
PUBLIC KEY FOR Robert Bihlmeyer as copied and pasted from:
Key for user ID: Robert Bihlmeyer <firstname.lastname@example.org>
1001-bit key, Key ID F5B09AB5, created 1995/11/16
Also known as: Robert Bihlmeyer <email@example.com>
Also known as: Robert Bihlmeyer <firstname.lastname@example.org>
-----BEGIN PGP PUBLIC KEY BLOCK-----
-----END PGP PUBLIC KEY BLOCK-----