SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
root@darkstar:/big/store1/soft/mplayer/mplayerhq# gpgv MPlayer.tar.gz.asc
gpgv: keyblock resource `/root/.gnupg/trustedkeys.gpg': general error
gpgv: Signature made Mon 17 Mar 2008 02:21:35 PM ART using DSA key ID 9C7BA3B6
gpgv: Can't check signature: public key not found
You see what I did. But it is evident I'm doing something wrong (I'd say, all wrong). What do I do with the .asc? Thanks in advance.
EDIT: in another post I saw somebody using gpg. I tried but it failed too.
__________________
I would be much obliged to you if you point out my mistakes in English.
La
Hi stf92,
You should first have the public key of the packager. Supposing you are using slackbuilds.org, here is the link http://slackbuilds.org/GPG-KEY. Once you have the public key, be in the directory which has both tar.gz and the tar.gz.asc files and run
Thanks. I already downloaded GPG-KEY from slackbuilds. I put it in the directory with the .gz and the .gz.asc but still 'gpg --verify MPlayer.tar.gz.asc' gives error. Regards.
root@darkstar:/home/semoi/Desktop# gpg --verify MPlayer.tar.gz.asc
gpg: Signature made Mon 17 Mar 2008 02:21:35 PM ART using DSA key ID 9C7BA3B6
gpg: Good signature from "SlackBuilds.org Development Team <slackbuilds-devel@slackbuilds.org>"
gpg: WARNING: This key is not certified with a trusted signature!
gpg: There is no indication that the signature belongs to the owner.
Primary key fingerprint: D307 6BC3 E783 EE74 7F09 B8B7 0368 EF57 9C7B A3B6
root@darkstar:/home/semoi/Desktop#
Although I expected a more satisfying message or no message at all. Well, but I think I can now trust the transmited file MPlayer.tar.gz. Thank you very much.
Although I expected a more satisfying message or no message at all.
If you want a more satisfying message, you need to generate your own public/private GPG key and then sign the Slackbuilds.org public key with your own private key.
This command:
Code:
gpg --gen-key
will get you started.
Check out the GPG mini-how-to for a great introduction. It's what I rely on when I'm working my way through GPG.
Also, KDE's KGPG utility is a great graphical front end for GPG.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.