Op donderdag 1 november 2012 12:08:57 schreef Carlos E. R.:
On 2012-11-01 11:31, Freek de Kruijf wrote:
I also tried gpg -a "openSUSE-12.2-DVD-x86_64.iso.asc" and the result is:
gpg: Signature made Thu Aug 30 12:02:40 2012 CEST using RSA key ID 3DBDC284
gpg: Good signature from "openSUSE Project Signing Key
" gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to
the owner. Primary key fingerprint: 22C0 7BA5 3417 8CD0 2EFE 22AA B88B 2FD4 3DBD C284
Something should be added about the warning.
The warning is correct, and will be there until _you_ sign the key.
I know, but a innocent user might get confused, so something like You get a warning "This key is not certified with a trusted signature!" However when the fingerprint mentioned below the warning is equal to the one below this text, you can trust the .iso file. Unfortunately I can't login in the wiki, so I can't make this change. -- fr.gr. Freek de Kruijf -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org