GPG signature verification problem?

John Clizbe JPClizbe at tx.rr.com
Thu Apr 19 00:32:04 CEST 2007


Blumenthal, Uri wrote:
> Interestingly, with GPGol both signatures verified correctly!
> 
> While attempts to use GPG4Win directly (open the email piece and
> run GPG4Win on the Current Window) fail with "BAD signature".
> 
> And GPG4Win crashes at the attempt to retrieve a key from the
> remote keyserver (from behind HTTP proxy).

You're getting Bad signature because gpg can't find the key. And it can't find
it because the keyserver helper program is being blocked at your proxy server.

In addition to auto-key-retrieve, try specifying http-proxy[=value] as part of
the keyserver-options line in gpg.conf.

From the gpg man page:

  http-proxy[=value]
            For HTTP-like keyserver schemes that (such as HKP
            and HTTP itself), try to access the keyserver over
            a proxy. If a value is specified, use this as the
            HTTP proxy. If no value is specified, the value of
            the environment variable "http_proxy", if any, will
            be used.

If that doesn't work, you may either

  a) ask the Net-gods to open the keyserver port, 11371. Or,
  b) try to locate a keyserver operation on port 80.

-- 
John P. Clizbe                      Inet:   John (a) Mozilla-Enigmail.org
You can't spell fiasco without SCO. PGP/GPG KeyID: 0x608D2A10/0x18BB373A
"what's the key to success?"        / "two words: good decisions."
"what's the key to good decisions?" /  "one word: experience."
"how do i get experience?"          / "two words: bad decisions."

"Just how do the residents of Haiku, Hawai'i hold conversations?"

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 663 bytes
Desc: OpenPGP digital signature
Url : /pipermail/attachments/20070418/705e0aff/attachment.pgp 


More information about the Gnupg-users mailing list