On Thu, 2003-11-27 at 05:48, Alexandre Strube wrote: > Hello people, > > there are several messages which come here signed. The show up a lock > with the following text: > > > > > Esta mensagem está > assinada > digitalmente. > Clique no cadeado > para mais > informações. > > (something like: > this message is > digitally signed. > Click on lock for > more information) > > > > > > Ok until there... but when you click on it, the lock brokes (a image of > a broken lock appears), and the following text replaces the previous > one: > > > Esta mensagem está assinada > digitalmente mas não é possÃvel > estabelecer sua autenticidade. > > gpg: cabeçalho de armadura: Version: > GnuPG v1.2.2 (GNU/Linux) > gpg: Assinatura feita em Qua 26 Nov > 2003 17:51:42 BRST usando DSA, ID da > chave 472919A2 > gpg: ImpossÃvel verificar > assinatura: chave pública não > encontrada > > This message is digitally signed but is not possible to establish it > authenticity. > > the last gpg line says: Unable to verify signature: public key not > found. > > What does this mean? You need to add the person to your public keyring. If you need help setting up your keyring, go to http://www.gnupg.org. The software should be installed with FC1. Once you have your keyring setup, add the following to $HOME/.gnupg/gpg.conf keyserver-options auto-key-retrieve Now when you click on the icon gpg will check the keyserver and download it assuming it resides on the keyserver. this doesn't mean that you can automatically "trust" that person, but it will prevent the broken lock. Clifford
