[MacPorts] #50429: unable to verify signature of MacPorts-2.3.4 download
#50429: unable to verify signature of MacPorts-2.3.4 download ----------------------+-------------------------------- Reporter: pigdog@… | Owner: macports-tickets@… Type: defect | Status: new Priority: Normal | Milestone: Component: ports | Version: 2.3.4 Keywords: | Port: ----------------------+-------------------------------- I downloaded MacPorts this morning. There was no checksum provided, but a gpg signature. The gpg --verify check failed: ro@peanut:/tmp$ gpg --verify MacPorts-2.3.4-10.11-ElCapitan.pkg.asc MacPorts-2.3.4-10.11-ElCapitan.pkg gpg: Signature made Thu 01 Oct 2015 03:53:54 PM EDT using DSA key ID B4AAE6CD gpg: Can't check signature: public key not found Can an md5sum or a passing gpg check be provided? Thanks, Rohit -- Ticket URL: <https://trac.macports.org/ticket/50429> MacPorts <https://www.macports.org/> Ports system for OS X
#50429: unable to verify signature of MacPorts-2.3.4 download -----------------------+-------------------------------- Reporter: pigdog@… | Owner: macports-tickets@… Type: defect | Status: new Priority: Normal | Milestone: Component: ports | Version: 2.3.4 Resolution: | Keywords: Port: | -----------------------+-------------------------------- Comment (by pigdog@…): I found the https://distfiles.macports.org/MacPorts/MacPorts-2.3.4.chk.txt file and was able to verify the md5sum. Still the gpg check should be able to pass. -- Ticket URL: <https://trac.macports.org/ticket/50429#comment:1> MacPorts <https://www.macports.org/> Ports system for OS X
#50429: unable to verify signature of MacPorts-2.3.4 download -----------------------+-------------------------------- Reporter: pigdog@… | Owner: macports-tickets@… Type: defect | Status: new Priority: Normal | Milestone: Component: base | Version: 2.3.4 Resolution: | Keywords: Port: | -----------------------+-------------------------------- Changes (by ryandesign@…): * cc: jmr@… (added) * component: ports => base Old description:
I downloaded MacPorts this morning. There was no checksum provided, but a gpg signature. The gpg --verify check failed:
ro@peanut:/tmp$ gpg --verify MacPorts-2.3.4-10.11-ElCapitan.pkg.asc MacPorts-2.3.4-10.11-ElCapitan.pkg gpg: Signature made Thu 01 Oct 2015 03:53:54 PM EDT using DSA key ID B4AAE6CD gpg: Can't check signature: public key not found
Can an md5sum or a passing gpg check be provided?
Thanks, Rohit
New description: I downloaded MacPorts this morning. There was no checksum provided, but a gpg signature. The gpg --verify check failed: {{{ ro@peanut:/tmp$ gpg --verify MacPorts-2.3.4-10.11-ElCapitan.pkg.asc MacPorts-2.3.4-10.11-ElCapitan.pkg gpg: Signature made Thu 01 Oct 2015 03:53:54 PM EDT using DSA key ID B4AAE6CD gpg: Can't check signature: public key not found }}} Can an md5sum or a passing gpg check be provided? Thanks, Rohit -- -- Ticket URL: <https://trac.macports.org/ticket/50429#comment:2> MacPorts <https://www.macports.org/> Ports system for OS X
#50429: unable to verify signature of MacPorts-2.3.4 download -------------------------+-------------------------------- Reporter: pigdog@… | Owner: macports-tickets@… Type: defect | Status: closed Priority: Normal | Milestone: Component: base | Version: 2.3.4 Resolution: worksforme | Keywords: Port: | -------------------------+-------------------------------- Changes (by jmr@…): * status: new => closed * resolution: => worksforme Comment: The key is on the keyservers: http://wwwkeys.pgp.net/pks/lookup?search=jmr%40macports.org&op=index and also attached to my wiki page: wiki:jmr -- Ticket URL: <https://trac.macports.org/ticket/50429#comment:3> MacPorts <https://www.macports.org/> Ports system for OS X
participants (1)
-
MacPorts