[INN] #13: gpgverify uses attached signature verifications.

INN rra at stanford.edu
Sun Dec 21 22:28:20 UTC 2008

#13: gpgverify uses attached signature verifications.
 Reporter:  eagle      |        Owner:  eagle 
     Type:  defect     |       Status:  closed
 Priority:  medium     |    Milestone:        
Component:  utilities  |      Version:        
 Severity:  normal     |   Resolution:  fixed 
 Keywords:             |  
Changes (by iulius):

  * status:  new => closed
  * resolution:  => fixed


 (In [8247]) Remove gpgverify because it uses the old attached signature
 verification method, which doesn't work properly for
 new-style GnuPG signatures that require Hash headers
 for attached signatures.

 23:21 news at trigofacile ~% gpgverify < checkgroups-1229673648.sig
 zsh: exit 3     gpgverify < checkgroups-1229673648.sig

 Note that pgpverify also handles GnuPG signatures, recognizes
 their new-style, and is shipped with INN.  For that checkgroups,
 it answers "[GNUPG:] GOODSIG", etc.
 Therefore, pgpverify should be used instead of gpgverify.

 close #13

Ticket URL: <http://inn.eyrie.org/trac/ticket/13#comment:1>
INN <http://www.eyrie.org/~eagle/software/inn/>

More information about the inn-bugs mailing list