Bad Signature (was Re: [Announce] Updated GnuPG 1.4.0 Window binary)

Charly Avital shavital at
Fri Dec 17 05:03:22 CET 2004

Hash: SHA1

I believe WK is using an additional subkey to sign, that might be the 

- - WK's signature verified on Thunderbird 1.0 (Macintosh), Mac OS X 
10.3.7, GnuPG 1.4.0. Bad signature.
- - verified with Apple's 1.4.0/GPGMail 1.0.2 (Stéphane 
Corthésy). Verifies OK.
Meaning good signature.
- - verified with Apple's>PGP 8.1, "unknown key", and 
states signature's date and time. WK's key is included in PGP 8.1 
Keyring. This is why I think this is a subkey signature.

For all it is worth,

On Dec 16, 2004, at 7:28 PM, Michael Wenger wrote:

> Hi Werner!
> Shatadal schrieb am 17.12.2004 00:37 :
>> It seems that your message was not signed correctly. I am using 
>> enigmail
>> with mozilla thunderbird and it prompts me to import public keys
>> required to verify signed messages. When I import your key however
>> enigmail complains of a bad signature. I have imported your key from
>> and and got the key
>> for wk at with key id 0x5B0358A2. Interestingly enigmail asks 
>> for
>> key ID 0x010A57ED initially to verify the signature. Maybe the problem
>> is with enigmail. Could you help?
> The same with me. Your signature is the only one which Enigmail cannot 
> verify correctly.
> The error message says:
> gpg: Unterschrift vom 12/16/04 22:17:17, DSA Schlüssel ID 010A57ED
> gpg: FALSCHE Unterschrift von "Werner Koch <wk at>"
> Thunderbird 0.9 DE
> EnigMail 0.89.0
> GnuPG 1.2.5
> Windows Millennium
> I have had no problems with any signatures till now.
> Can you tell us, what went wrong?
> Regards,
> Michael
Version: GnuPG v1.4.0 (Darwin)


More information about the Gnupg-users mailing list