Hi Yves, This is fine. You get this message because the key was not signed by any "trusted" party... Something similar to self-signed SSL cert. As long as the fingerprint for the key is:
86C6 D33B C52E 19BF DDAE 57EB 4E57 14E2 6B30 327E You are fine. Thanks, -- Daniel B. Cid dcid ( at ) ossec.net On 7/25/06, Yves BIGLIAZZI <[EMAIL PROTECTED]> wrote: > > hi, > > I certainly don't understand how work gpg but I follow all the step of > your documentation and I got this message : > > $ gpg --verify ossec-hids-0.9.tar.gz.sig ossec-hids-0.9.tar.gz > gpg: Signature faite le mar 25 jui 2006 03:21:33 CEST avec la clé RSA > ID 6B30327E > gpg: Bonne signature de « Daniel B. Cid (Ossec development) > <[EMAIL PROTECTED]> » > gpg: ATTENTION: Cette clé n'est pas certifiée avec une signature de > confiance ! > gpg: Rien ne dit que la signature appartient à son > propriétaire. > Empreinte de clé principale: 86C6 D33B C52E 19BF DDAE 57EB 4E57 14E2 > 6B30 327E > > translation in english: > CAUTION: This key is not certified with a signature of confidence! > Nothing says that the signature belongs to its owner. > > is that normal ? > > thanks, > > yves > > > > >
