Page MenuHome GnuPG
Create Task
Maniphest T3477

signed files cannot be verified
Closed, ResolvedPublic
Actions

Description

I use Win 7 (64bit). I installed Gpg4Win 2.3.4. My first action was to check the signature of the "gpg4win-2.3.4.exe". I therefore I right-clicked on the file and chose "more GpgEX options" and then "Prüfen". I get then this:

I downloaded already the signature file but nevertheless I get this error:

I get the same bug also when I at first sign a file by myself and subsequently check the validity of my own signature. But I just signed it, why am I told that the validity of the signature cannot be verified?

Details

Version
2.3.4

Event Timeline

uwestoehr created this task.Oct 31 2017, 3:33 AM
aheinecke closed this task as Invalid.Nov 13 2017, 10:33 AM
aheinecke added a subscriber: aheinecke.

Everything works correctly but the warning message is probably too cryptic. It means that the signature could not be checked because the public key that created this signature is not found. It needs to downloaded, imported and verified. (See: https://www.gpg4win.org/package-integrity.html )
We improved the warning message with gpg4win-3.0

uwestoehr added a comment.Nov 29 2017, 12:49 AM

the warning message is probably too cryptic.

Thanks, now I understand.

We improved the warning message with gpg4win-3.0

Many thanks.

aheinecke changed the task status from Invalid to Resolved.Nov 29 2017, 7:36 AM