LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices

Reply
 
Search this Thread
Old 12-09-2012, 10:48 PM   #1
said76
Member
 
Registered: Aug 2011
Posts: 97

Rep: Reputation: Disabled
check software with PGP signature


Hi,

I was trying to make sure if the dovecot version I have downloaded has not been tampered or anything from the dovecot website.

There is a PGP signature but I have no idea how to check it with PGP signature. I know about md5sum.

I tried to following but not successful.
gpg --keyserver wwwkeys.pgp.net --recv 40558AC9
gpg: requesting key 40558AC9 from hkp server wwwkeys.pgp.net
gpg: keyserver timed out
gpg: keyserver receive failed: keyserver error

Am I doing it the right way?

Thank you
 
Old 12-10-2012, 05:19 AM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,492
Blog Entries: 54

Rep: Reputation: 2905Reputation: 2905Reputation: 2905Reputation: 2905Reputation: 2905Reputation: 2905Reputation: 2905Reputation: 2905Reputation: 2905Reputation: 2905Reputation: 2905
Quote:
Originally Posted by said76 View Post
I was trying to make sure if the dovecot version I have downloaded has not been tampered or anything from the dovecot website.
Before you post try to search LQ. If you used a search term like "gpg --verify" you find threads like http://www.linuxquestions.org/questi...nature-137111/ (of course you have to know the switch is called "--verify"). As you post notice the "Similar Threads" section at the bottom of this page which lists threads with a likely similar topic to check. To check the signature use the --verify option (http://www.gnupg.org/gph/en/manual.html#AEN136):
Code:
gpg --verify dovecot-2.0.21.tar.gz.sig dovecot-2.0.21.tar.gz

Quote:
Originally Posted by said76 View Post
gpg: keyserver timed out
Try accessing another keyserver like pgp.mit.edu, pool.sks-keyservers.net or subkeys.pgp.net.
 
1 members found this post helpful.
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Check .sig signature phbri Linux - Security 1 11-23-2009 10:04 AM
PGP Signature? little_penguin Linux - Security 3 05-14-2005 08:33 AM
Signature check in rpm zaphyr17 Mandriva 1 12-31-2004 10:04 AM
PGP signature sopiaz57 Linux - Security 2 11-25-2003 09:30 AM
PGP check X11 Linux - Security 2 03-12-2002 11:43 AM


All times are GMT -5. The time now is 01:19 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration