Re: Do you auto fetch GPG keys?
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Friday, June 16 at 12:27 PM, quoth Ye Fei:
>When reading your message and also some other encrypted message,
>why it shows "PGP signature could NOT be verified.".
>Is it the normal situation?
No it is not normal. What that error message means is "this message
claims to be signed, but the signature is incorrect". In other words,
either the sender messed up the signature, or the message was modified
after the signature was made. Actually, there is a third possibility:
your pgp settings may not be set up properly to validate message
signatures.
Here's a test: this message is signed (and the signature is valid).
When you read this message, if you try to verify the signature, it
should say something like:
Good signature from "Kyle Wheeler"
and then it would list the identities I have stored in my pgp key.
~Kyle
- --
For every complex problem, there is a solution that is simple, neat,
and wrong.
-- H. L. Mencken
-----BEGIN PGP SIGNATURE-----
Comment: Thank you for using encryption!
iD8DBQFEkr2dBkIOoMqOI14RAsgPAKCymP3lYtT1MypO6jxflkRKO+ObMgCg0uXQ
SYZFnRNZt5rq6RRbpxyewJY=
=UBbT
-----END PGP SIGNATURE-----