Verifying Signatures in a Script

Keith Hellman khellman at
Fri Jun 8 09:41:38 CEST 2007

I would like a script to verify that I've signed a document.  Verifying
a signature is easy with gnupg, but I can't find a switch that requires 
the signature be that of a particular public key.

As it is, a document signed by someone else (whose public key I have)
would slip through my script if I just use the exit code.  My best
solution so far is to detect the identity printed out by gpg on stderr
--- but this seems a fragile solution.

I'd like to be able to say:
  $ gpg --verify-specific-user khellman at 
          --verify signedoc.gpg

Does this functionality exist? Did I miss something in the docs? Is
there a workaround?

Keith Hellman                             #include <disclaimer.h>
khellman at                from disclaimer import standard
khellman at
                    public key @ B5354B76                     
    Y!M: mcprogramming                           AIM/ICQ: 485403897       
                     gtalk: jabber at                      

"In any project that is multi-threaded, most bugs will come from threading
issues.  This is regardless of programming language -- it's a deep, as yet
ununderstood property of threads."

-- Guido van Rossum
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : /pipermail/attachments/20070608/b704c175/attachment.pgp 

More information about the Gnupg-users mailing list