Free Software Foundation statement on the GNU Bash "shellshock" vulnerability

Philip Jackson philip.jackson at
Fri Sep 26 15:35:53 CEST 2014

On 26/09/14 11:43, Don Saklad wrote:
> in plain neophyte english what are those .asc 's in that message?
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users at
the 2 attachments.asc are :

1. the sender's public key
2. the electronic signature of the message signed by the sender

the two permit you to verify that the message is sent by the sender (if you
already have and trust his key) and has not been modified en route.

If you don't have his key, you can use the first attachment to import into your
keyring.  Then whether or not you trust his signature is your decision.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 455 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20140926/20ce7604/attachment.sig>

More information about the Gnupg-users mailing list