PGP signatures.
Todd Zullinger
tmz at pobox.com
Wed May 28 02:10:32 UTC 2008
Aaron Konstam wrote:
> I have the file set up as you indicate and evolution indicates the
> key is invalid. Maybe its evolutions fault.
The issue that I was responding to was getting the key automatically
retrieved from a keyserver. That is a separate issue from validating
the key. If evolution tells you that the key is invalid, it would
indicate to me that it did retrieve the key correctly. It then could
not find any trusted signatures on that key, thus the key is
"invalid."
For a key to be valid, it needs to be signed by a key to which you
have given sufficient trust. Your own key is ultimately trusted. You
can assign various levels of trust to other keys (once they have been
signed by a trusted key). By default, gpg will consider a key valid
if it signed by at least one fully or ultimately trusted key, or by 3
or more marginally trusted keys.
--
Todd OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Ambition is a poor excuse for not having enough sense to be lazy.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 542 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20080527/e605478c/attachment-0001.sig>
More information about the fedora-list
mailing list