On Mon, Aug 17, 2015 at 10:23:03PM +0100, Aliz 'Randomdude' wrote: > > I'm unable to validate the gpg signature located at > http://releases.ubuntu.com/vivid/SHA1SUMS.gpg correctly, though I can > validate SHA256SUMS and MD5SUMS files. > > user@box:~$ gpg --verify SHA1SUMS.gpg SHA1SUMS > gpg: Signature made Mon 03 Aug 2015 05:52:38 PM BST using DSA key ID FBB75451 > gpg: BAD signature from "Ubuntu CD Image Automatic Signing Key > <[email protected]>" > > Other files verify correctly.
You're not wrong, it's like this on the master copy as well. I wonder how that came to be. Might have been a bit flip or something. I've regenerated the sigs and pushed them again. ... Adam -- Ubuntu-release mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-release
