Verify that the file is from who I expect it to be from

Dan Horne dan.horne at redbone.co.nz
Fri Oct 27 01:52:33 CEST 2017


Hi all

maybe I'm missing something, but how do I verify not only that an encrypted
file is signed, but that it is signed by the party I expect to have signed
it? In other words, if two parties can supply a file with the same name I
want to make sure that when I think I'm dealing with a file from party A,
it is actually signed by party A. At the the moment, when I decrypt the
file, it seems to simply be checking that the signature is valid.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20171027/ad73afbf/attachment.html>


More information about the Gnupg-users mailing list