[HOME] [DOWNLOAD] [DOCS] [NEWS] [SUPPORT] [TIPS] [ISSUES] [CONTRIBUTE] [DONATE]

Whonix signing key mismatch?

Hi maybe a little newbie question, but still i’d like to be sure.

The output should be identical to the following.

Refrence:

gpg: key 8D66066A2EEACCDA: 104 signatures not checked due to missing keys
pub   rsa4096/8D66066A2EEACCDA 2014-01-16 [SC] [expires: 2026-01-23]
      Key fingerprint = 916B 8D99 C38E AF5E 8ADC  7A2A 8D66 066A 2EEA CCDA
uid                            Patrick Schleizer <adrelanos@riseup.net>
sub   rsa4096/3B1E6942CE998547 2014-01-16 [E] [expires: 2026-01-23]
sub   rsa4096/10FDAC53119B3FD6 2014-01-16 [A] [expires: 2026-01-23]
sub   rsa4096/CB8D50BB77BB3C48 2014-01-16 [S] [expires: 2026-01-23]

Output:

gpg: key 8D66066A2EEACCDA: 104 signatures not checked due to missing keys
pub   rsa4096/8D66066A2EEACCDA 2014-01-16 [SC] [expires: 2026-01-23]
      Key fingerprint = 916B 8D99 C38E AF5E 8ADC  7A2A 8D66 066A 2EEA CCDA
uid                            Patrick Schleizer <adrelanos@kicksecure.com>
uid                            Patrick Schleizer <adrelanos@riseup.net>
uid                            Patrick Schleizer <adrelanos@whonix.org>
sub   rsa4096/3B1E6942CE998547 2014-01-16 [E] [expires: 2026-01-23]
sub   rsa4096/10FDAC53119B3FD6 2014-01-16 [A] [expires: 2026-01-23]
sub   rsa4096/CB8D50BB77BB3C48 2014-01-16 [S] [expires: 2026-01-23]

Current output has additional uids, is this safe to use or Wiki reference key need an update?

I am not even sure it’s worth updating.

uids and expiration information change over time.

The only important thing to verify is the key fingerprint.

Then the problem is also that asking about this is on the same Information Security Level (just now ritten). Context: Conceptual Challenges in Digital Signatures Verification.

1 Like
[Imprint] [Privacy Policy] [Cookie Policy] [Terms of Use] [E-Sign Consent] [DMCA] [Contributors] [Investors] [Priority Support] [Professional Support]