On 12/09/2017 09:56 AM, Franz wrote:
I bought a larger SSD and want to reinstall 3.2, but gpg verification
no more works.
I have a gpg VM where all this verificaion stuff is already installed
and worked for 3.1 and 3.2 in the past, so assumed it should work
again for the same task, but no.
For the signature file of the iso, I pasted it into a file calledÂ
Qubes-R3.2-x86_64.iso.asc
But I get:
gpg -v --verify Qubes-R3.2-x86_64.iso.asc Qubes-R3.2-x86_64.iso
gpg: no valid OpenPGP data found.
gpg: the signature could not be verified.
So I suspected it is because developer key lapse after one year and did:
|gpg --recv-keys 0xC52261BE0A823221D94CA1D1CB11CA1D03FA5082 |
|as instructed here
https://www.qubes-os.org/security/verifying-signatures/ It actually
imported one key, but verification gives the same failed result. |
|Also tried to import the key associated to iso download [user@gpg
iso2]$ gpg --import qubes-release-3-signing-key\(1\).asc gpg: key
03FA5082: "Qubes OS Release 3 Signing Key" not changed gpg: Total
number processed: 1 gpg: unchanged: 1 |
|Finally downloaded the iso again, but same result |
Maybe you pasted the key into the .asc file, instead of pasting the
signature?
If you think the .iso downloaded incorrectly, first thing to check is
the exact number of bytes with 'ls -l' in case the download stopped
prematurely.
--
Chris Laprise, [email protected]
https://github.com/tasket
https://twitter.com/ttaskett
PGP: BEE2 20C5 356E 764A 73EB 4AB3 1DC4 D106 F07F 1886
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/qubes-users/9be0a8a3-e47b-f722-8780-6b65962e3813%40posteo.net.
For more options, visit https://groups.google.com/d/optout.
