On 04/20/2010 06:36 PM, RICHARD (IT) FERNANDEZ wrote: > Hello, > > After downloading the new clamav-0.96.tar.gz package and the .sig, I > followed the instructions in the FAQ > to verify the signature and get the following output: > > $ gpg --verify clamav-0.96.tar.gz.sig clamav-0.96.tar.gz > gpg: Signature made Wed Mar 31 14:07:31 2010 EDT using DSA key ID > 985A444B > gpg: BAD signature from "Tomasz Kojm <[email protected]>" > > I'm running gpg 1.4.9 on OpenBSD 4.5 if that matters. > Am I doing something wrong or is the package "bad"?
Maybe it got corrupted during download? What is the md5/sha256 hash of it? Best regards, --Edwin _______________________________________________ Help us build a comprehensive ClamAV guide: visit http://wiki.clamav.net http://www.clamav.net/support/ml
