[
https://issues.apache.org/jira/browse/WHIMSY-275?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16882470#comment-16882470
]
Sebb commented on WHIMSY-275:
-----------------------------
For keys which are in the new server, it's possible to fetch them using https:
https://keys.openpgp.org/vks/v1/by-keyid/<16 char upper case hex id>
It should be possible to fetch the key using curl/wget or Ruby itself and then
add the file to the key ring using gpg --import <filename>
That might be a suitable work-round until gpg can be updated.
> GPG verification no longer working
> ----------------------------------
>
> Key: WHIMSY-275
> URL: https://issues.apache.org/jira/browse/WHIMSY-275
> Project: Whimsy
> Issue Type: Bug
> Components: SecMail
> Reporter: Matt Sicker
> Assignee: Craig L Russell
> Priority: Major
>
> After changing to keys.openpgp.org, no signatures can be verified in Whimsy.
> Take any of the recent .asc-signed ICLAs in the workbench and they'll all
> fail to verify the public key. If you try downloading those keys directly via
> gpg using keys.openpgp.org (or searching on their site), you'll find the
> appropriate keys, though Whimsy will still give a "no public key" error.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
