我正在尝试安装https://electrum.org/#download为此,我按照说明进行操作,但是当我尝试验证签名时,出现以下错误:
└─$ gpg --verify Electrum-4.1.5.tar.gz.ThomasV.asc Electrum-4.1.5.tar.gz 2 ⨯
gpg: Signature made Mon 19 Jul 2021 09:22:29 PM MSK
gpg: using RSA key 6694D8DE7BE8EE5631BED9502BD5824B7F9470E6
gpg: Can't check signature: No public key
┌──(katya12㉿kali)-[/home/katya/soft/electrum]
└─$ gpg --import Electrum-4.1.5.tar.gz.ThomasV.asc 2 ⨯
gpg: no valid OpenPGP data found.
gpg: Total number processed: 0
有一个指令
On Linux, you can import that key using the following command: gpg --import ThomasV.asc.
但任何地方都没有 ThomasV.asc 文件。你能告诉我如何验证 Linux 上一个 Electrum 版本的签名吗?
更新: 我已经从不同的来源下载了密钥(说明中未提及)https://raw.githubusercontent.com/spesmilo/electrum/master/pubkeys/ThomasV.asc然后尝试用它验证签名,但出现以下错误:
└─$ sudo gpg --import ThomasV.asc 2 ⨯
[sudo] password for katya12:
gpg: key 2BD5824B7F9470E6: "Thomas Voegtlin (https://electrum.org) <[email protected]>" not changed
gpg: Total number processed: 1
gpg: unchanged: 1
┌──(katya12㉿kali)-[/home/katya/soft/electrum]
└─$ sudo gpg --verify ThomasV.asc Electrum-4.1.5.tar.gz 2 ⨯
gpg: verify signatures failed: Unexpected error
答案1
gpg: Can't check signature: No public key
您需要gpg --import公钥。这是一个列表金银币
然后用您自己的私钥对它们进行签名(这意味着它们受到您的信任)
到底:
gpg --verify signature-of-file.asc file