All Questions
27 questions
2
votes
1
answer
189
views
gpg: Can't check signature: No public key | Debian Raspberry Pi Images
I am having some issue verifying the Raspberry Pi image for the RPI 2B of Debian.
Steps followed:
Download Files:
wget https://raspi.debian.net/tested/20231109_raspi_2_bookworm.img.xz && wget ...
2
votes
1
answer
228
views
Convert encrypted and signed to just signed PGP message
Suppose Bob got a message from Alice encrypted with his public key and signed with her private key. Now he wants to prove to Charlie that he got a message from her with this exact content. The message ...
- 23
0
votes
0
answers
179
views
Microsoft public repository rpm downloads failed with gpgcheck enabled with reposync
I’m facing an issue to download the patches (rpm) from Microsoft public repository site with gpgcheck=1.
Repository site: https://packages.microsoft.com/rhel/7/prod/
To download all rpm I have ...
5
votes
1
answer
10k
views
How do I check or verify a pgp/gpg signature using a .asc PGP signature file? (Can't check signature: No public key)
I'm installing the Ultimaker Cura 3D printer slicer program from here (https://github.com/Ultimaker/Cura/releases/tag/5.1.0) onto Linux Ubuntu 20.04.
I downloaded these 2 files:
Ultimaker-Cura-5.1.0-...
- 2,792
0
votes
2
answers
143
views
How to properly setup a verified mail signature?
I've renewed and imported my old self-generated GPG certificate. After setting the new expiration date I've uploaded my cert using gpg --keyserver pgp.mit.edu --send-keys <key id>
Receiving a ...
- 321
0
votes
0
answers
303
views
Request for help repairing output of apt update
This is the output of sudo apt update
I would appreciate it if someone could help me fix the problems, I'm only new to Linux.
I'm running (Linux kali 5.16.0-kali5-amd64 #1 SMP PREEMPT Debian 5.16.14-...
- 1
1
vote
1
answer
368
views
GPG : no more signatures of a fresh imported key
SHORT
GPG doesn't get signatures of an imported public key anymore (with Ubuntu 20.04) while it did it 6 months ago (with Ubuntu 18.04).
I don't understand what's wrong.
LONG
On march, I followed this ...
2
votes
1
answer
690
views
GPG drops all non-self-signatures
I want to import/refresh a gpg key from a keyserver including all non self-signatures.
Whenever I try to do this gpg says, for example
gpg: key <number>: number of dropped non-self-signatures: ...
- 101
2
votes
3
answers
6k
views
Installing Sublime Text with apt fails due to missing public key
I am using the instructions linked below to setup apt to install sublime-text.
I am intentionally applying the method for connecting to third party repositories described on the Debian and ...
- 252
3
votes
2
answers
4k
views
What is the difference between a GPG signature and a detached signature?
We can sign a file with gpgp:
gpg -s file.pdf
Which generates a file signature file.pdf.gpg.
It is also possible to make a detached signature:
gpg -b file.pdf
Which generates file.pdf.sig.
I noticed ...
user462354
1
vote
0
answers
444
views
Parabola GNU/Linux-libre installation: problem with key
I'm trying to install Parabola GNU/Linux-libre (OpenRC) and I repeatedly get this error during pacstrap /mnt base elogind udev-init-scripts.
error: some-package: signature from "A Packager <a-...
- 377
1
vote
1
answer
2k
views
Trouble verifying linux, even after downloading key I get "No public key"
Following these instructions, I downloaded and unpacked the kernel.
https://priyachalakkal.wordpress.com/2013/01/19/verifying-digital-signature-using-gpg/
Then I tried to verify the signature but I ...
- 179
2
votes
1
answer
3k
views
Correct way to verify PGP signature in BASH script (pinning exact long fingerprint)
I have:
A file
A detached PGP signature of that file in ASCII armor format and
A 40-character (long-format) fingerprint identifying the one key that must have a valid signature
What is the correct ...
- 352
1
vote
1
answer
1k
views
Verifying Signature of Debian 10.5 returns error "Can't check signature: No public key"
I'm trying to verify the SHA512 checksum for Debian 10.5-amd-netinst.iso as found on the official Debian CD-image site.
I'm running into the following error:
gpg --no-default-keyring --keyring Debian\ ...
- 13
0
votes
0
answers
436
views
What does the "Certificates" section in seahorse do?
What does the "Certificates" / "System Trust" section of seahorse do?
I am trying to sign a document in LibreOffice and the menu there uses the word "Certificate", so I am thinking that I need to ...
- 1,025
6
votes
1
answer
5k
views
How to detach-sign a file with a specific private key? || Why this fails?
I have a .tar.xz file which I would like to detach-sign using my gpg private key.
The problem is, I have multiple of private keys imported to my keyring and need to choose, which one to use.
...
- 29.7k
2
votes
1
answer
3k
views
dpkg-source: warning: failed to verify signature
System: Linux Mint 19 Cinnamon, based on Ubuntu 18.04.
In this answer, I am being pointed at a different solution, other than installing directly from source.
Since I haven't ever used dget, I must ...
- 29.7k
3
votes
2
answers
5k
views
SUSE Linux Signature verification failed
When I code, build and sign .rpm file for SUSE Linux, it is signed successfully as follows:
rpm --checksig -v xxx.rpm
Header V4 RSA/SHA256 Signature, key ID 7936b039: OK
Header SHA1 digest: OK
...
- 31
2
votes
0
answers
2k
views
How do I verify linux kernel signature with gpg?
Following the notes at the kernel.org site, but I cannot seem to verify the signature of the kernel. I tried to use the given script to handle it for me, but that has failed too.
user@localhost ~ $ ...
- 505
1
vote
2
answers
544
views
How do I verify https://files.devuan.org/devuan-devs.gpg
I am running Devuan Jessie. I want to install another Devuan Ascii from scratch. So I downloaded:
https://files.devuan.org/devuan_ascii/installer-iso/devuan_ascii_2.0.0_amd64_netinst.iso
https://...
- 1,267
8
votes
2
answers
6k
views
How do I prevent gpg from including SHA1?
apt-get is complaining that signatures are invalid and that the InRelease file is not signed (see Using Centos to sign .deb packages for background). On the server, I have verified using gpg that ...
- 1,967
48
votes
2
answers
54k
views
Set default key in gpg for signing
I have created multiple keys using gpg.
Whenever I try to sign any file, gpg automatically uses the first one I have created. How to set default key for signing in gpg. I don't want to delete/...
- 581
-1
votes
3
answers
1k
views
Can I verify a file with GPG without downloading the key
To verify an .iso written on /dev/sdb with the signature my_signature.sig in gpg, I use
dd if=/dev/sdb | gpg --keyid-format 0xlong --verify my_signature.sig -
Is there a way to execute this command ...
- 5,128
6
votes
5
answers
40k
views
How to encrypt a file with private key
I want to encrypt a file with a private key and decrypt it with a public key. A public key will be embedded in my app. So I want to have a guarantee that the file was created by me. How can I use gpg ...
- 173
5
votes
1
answer
3k
views
Sign a PDF file to verify integrity and validity
I've been asked to distribute electronic certificates (they were originally paper), in a PDF format, but I'd like to sign them with gpg or something similar so users can upload them to my site to ...
- 229
5
votes
1
answer
3k
views
Debian: GPG cannot fetch Linux Kernel key
I am in the process of recompiling the kernel on Debian. Following the instructions on kernel.org, the first step is to verify the signature. But GPG complains that it cannot find the public key:
# ...
- 1,859
1
vote
1
answer
5k
views
What means warning: rpmts_HdrFromFdno when installing from rpmfusion?
Installing a media player from rpmfusion (via yum) yields following output:
Transaction Summary
================================================================================
Install 3 Packages (+...
- 58.6k