On Sat, Dec 27, 2008 at 9:23 PM, Tim Nelson <[email protected]> wrote: > Hot on the heels of the 1.2.1-RELEASE, I've just attempted to upload the > pfSense-Full-Update-1.2.1.tgz to a production router that is currently > running 1.2-RELEASE. The upload succeeds but I'm "greeted" with a nasty > dialog that says this: > > "The digital signature on this image is invalid. > This means that the image you uploaded is not an official/supported image and > may lead to unexpected behavior or security compromises. Only install images > that come from sources that you trust, and make sure that the image has not > been tampered with. > > Do you want to install this image anyway (on your own risk)?" > > Has the digital signature changed from 1.2 to 1.2.1? Is this message normal? >
Read the RC2 release announcement, specifically: "Note on Release Signing The key for signing releases and its backup were inadvertently destroyed. This means you'll get a warning that the release is unsigned, unless you are updating from a recent 1.2.1 snapshot. You can either just click through that warning, or install the Pubkey package you will find under System -> Packages. If you wish to update the file manually from a secure source, you can overwrite /etc/pubkey.pem with this file." http://blog.pfsense.org/?p=284 I added that info to the 1.2.1 release announcement as well. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
