bsign fails to verify
i just try to get bsign to work. signing works ok, but a later verify told me:
bsign: failed to verify signature in '/bin/xxx'.
for every (!) signed file.
so i assume it has something to do with the gnugp (1.2.4 debian) generated key.
gpg --homedir /floppy --gen-key ..which is noticed in the README from bsign gives me the option to generate following keys:
DSA and ElGamal (default)
DSA (sign only)
RSA (sign only)
..so i choosed to go with the default. am i wrong here? do i need RSA? which key is the right one?
this is what i get from gnugp:
Unterstützte Verfahren:
Öff.Schlüssel: RSA, RSA-E, RSA-S, ELG-E, DSA, ELG
Verschlü.: 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH
Hash: MD5, SHA1, RIPEMD160, SHA256
Komprimierung: nicht komprimiert, ZIP, ZLIB, BZIP2
the only thing i had to change in the bsign_sign and _verify scripts is to add quotes to the exclude/include path-names to get it working. else i followed the readme exactly.
some ideas?
thx mritch.
|