Downloading ISO and verifying signature not giving result shown in instructions
Instructions for verifying an ISO manually through OpenPGP in Tails say this:
After the verification finishes, you should see a notification that the signature is good:
tails-amd64-3.3.iso: Good Signature
Signed by on …
When doing it exactly as described by the instructions, I get this output:
tails-amd64-3.8.iso: Untrusted Valid Signature
Valid but unstrusted signature by on …
So, someone doing the verification as described by the instructions has to assume that the iso is in some way malicious since it does have an untrusted signature.
Is the documentation wrong, or is there a problem with the ISO?
(sajolida)
Feature Branch: 2dc4594d17
Attachments
Related issues
Original created by @brokenst on 15697 (Redmine)