modern GnuPG verify signatures

Stefan Claas stefan.claas at posteo.de
Thu Jun 15 18:59:41 CEST 2017


Am 15.06.17 um 17:49 schrieb Peter Lebbing:
> On 15/06/17 17:24, Stefan Claas wrote:
>> when i sign a message and do a gpg --verify it shows "using RSA
>> key 2BAF85F9281ABD543823C7C5981EB7C382EC52B4", in Terminal under
>> macOS, with my own key, but when doing the verify again with a
>> message from someone else it shows the long key-ID, instead of
>> the full key.
>
> It's much easier to see what is going on if you simply include the
> terminal output in your mail. When using GUI tools, one loses this great
> advantage, but if you're working on the terminal, please always include
> the output from the program itself rather than merely describing what
> happens.
>
> Could you give us an example?

Apollogies! Here's an example:

I clearsign a text file and verify it and modern GnuPG shows me this:

gpg --verify my_message.txt
gpg: Signature made Do 15 Jun 18:31:05 2017 CEST
gpg:                using RSA key 2BAF85F9281ABD543823C7C5981EB7C382EC52B4
gpg: Good signature from "Stefan Claas <stefan.claas at posteo.de>" [ultimate]

A friend just recently posted a message in a Usenet Group and i get this:

gpg --verify m123.eml
gpg: Signature made Xx 00 Jun 00:00:00 2017 CEST
gpg:                using RSA key 0000000000000000
gpg: Good signature from "xxxxxx xxxxxxxxx <xxxxxxx at example.com>" [full]
gpg: xxxxxx at example.com: Verified 4 signatures in the past 7 days. 
Encrypted 0 messages.

I will now also sign my message and hope i don't mess this post up,
so that you can verify my sig and tell me if it shows you also the
long-key ID or full key on your system.

Regards
Stefan



-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20170615/d085083c/attachment.sig>


More information about the Gnupg-users mailing list