verifying bind-9.10.0 download

mm half mm_half3 at yahoo.com
Sat May 3 00:50:45 UTC 2014 

Hello,

I have downloaded bind-9.10.0.tar.gz from the ISC download site, imported in the pgpkey2013.txt located at:   https://www.isc.org/downloads/software-support-policy/openpgp-key/ , and can't seem to get any of the signature files to pass the verify test using gpg :



gpg --import pgpkey2013.txt 
gpg: WARNING: using insecure memory!
gpg: please see http://www.gnupg.org/faq.html for more information
gpg: key 189CDBC5: public key "Internet Systems Consortium, Inc. (Signing key, 2013) <codesign at isc.org>" imported
gpg: Total number processed: 1
gpg:               imported: 1  (RSA: 1)




gpg --verify bind-9.10.0.tar.gz.asc bind-9.10.0.tar.gz
gpg: WARNING: using insecure memory!
gpg: please see http://www.gnupg.org/faq.html for more information
gpg: Signature made Tue Apr 29 16:12:28 2014 EDT using RSA key ID 189CDBC5
gpg: BAD signature from "Internet Systems Consortium, Inc. (Signing key, 2013) <codesign at isc.org>"


gpg --verify bind-9.10.0.tar.gz.sha512.asc bind-9.10.0.tar.gz
gpg: WARNING: using insecure memory!
gpg: please see http://www.gnupg.org/faq.html for more information
gpg: Signature made Tue Apr 29 16:12:25 2014 EDT using RSA key ID 189CDBC5
gpg: BAD signature from "Internet Systems Consortium, Inc. (Signing key, 2013) <codesign at isc.org>"


gpg --verify bind-9.10.0.tar.gz.sha256.asc bind-9.10.0.tar.gz
gpg: WARNING: using insecure memory!
gpg: please see http://www.gnupg.org/faq.html for more information
gpg: Signature made Tue Apr 29 16:12:26 2014 EDT using RSA key ID 189CDBC5
gpg: BAD signature from "Internet Systems Consortium, Inc. (Signing key, 2013) <codesign at isc.org>"



I am sure its a user error mistake, but wanted to verify other bind users are able to verify the downloaded files correctly, before digging any deeper into the problem.  If anyone has been able to verify the latest stable release using the posted keys, please let me know.

Thanks,


 
*****The content of this message is my personal opinion only, and should not be construed as anything that has been through rigorous scrutiny of the professional groups who devote their life and work to the topics being discussed********
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20140502/fbf201d6/attachment.html>

More information about the bind-users mailing list