[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#25572: Signatures on Emacs windows .zip files
From: |
Phillip Lord |
Subject: |
bug#25572: Signatures on Emacs windows .zip files |
Date: |
Sun, 29 Jan 2017 21:14:46 -0000 |
User-agent: |
SquirrelMail/1.5.2 [SVN] |
On Sun, January 29, 2017 8:14 pm, Eli Zaretskii wrote:
>> From: Richard Kettlewell <rjk@terraraq.uk>
>> Date: Sun, 29 Jan 2017 11:48:55 +0000
>>
>>
>> $ gpg2 --verify emacs-25.1-2-x86_64-w64-mingw32.zip.sig
>> gpg: Signature made 11/29/16 19:54:09 GMT Standard Time using DSA key ID
>> 60C3B396
>> gpg: Good signature from "Phillip Lord <phillip.lord@russet.org.uk>"
>> gpg: aka "Phillip Lord <p.lord@russet.org.uk>"
>> gpg: aka "Phillip Lord <p.lord@hgmp.mrc.ac.uk>"
>> gpg: aka "Phillip Lord <phillip.lord@newcastle.ac.uk>"
>> gpg: WARNING: This key is not certified with a trusted signature!
>> gpg: There is no indication that the signature belongs to the
>> owner. Primary key fingerprint: 8352 2404 7598 ECBC 61A1 DA34 5FE9 658D
>> 60C3 B396
>>
>
> That's because the zip files with Windows binaries were produced by
> Phillip.
>
>
> Why is that a bug?
>
I think it's a flaw with the website. It needs both our keys on.